Lucene search
K

6 matches found

OSV
OSV
added 2017/01/31 6:59 p.m.3 views

CVE-2016-10043

An issue was discovered in Radisys MRF Web Panel SWMS 9.0.1. The MSMMACRONAME POST parameter in /swms/ms.cgi was discovered to be vulnerable to OS command injection attacks. It is possible to use the pipe character | to inject arbitrary OS commands and retrieve the output in the application's...

10CVSS6AI score0.09528EPSS
Exploits5References1
NVD
NVD
added 2017/01/31 6:59 p.m.16 views

CVE-2016-10043

An issue was discovered in Radisys MRF Web Panel SWMS 9.0.1. The MSMMACRONAME POST parameter in /swms/ms.cgi was discovered to be vulnerable to OS command injection attacks. It is possible to use the pipe character | to inject arbitrary OS commands and retrieve the output in the application's...

10CVSS9.9AI score0.09528EPSS
Exploits5References1
Prion
Prion
added 2017/01/31 6:59 p.m.12 views

Command injection

An issue was discovered in Radisys MRF Web Panel SWMS 9.0.1. The MSMMACRONAME POST parameter in /swms/ms.cgi was discovered to be vulnerable to OS command injection attacks. It is possible to use the pipe character | to inject arbitrary OS commands and retrieve the output in the application's...

10CVSS8.4AI score0.09528EPSS
Exploits5References1Affected Software1
Cvelist
Cvelist
added 2017/01/31 6:0 p.m.24 views

CVE-2016-10043

An issue was discovered in Radisys MRF Web Panel SWMS 9.0.1. The MSMMACRONAME POST parameter in /swms/ms.cgi was discovered to be vulnerable to OS command injection attacks. It is possible to use the pipe character | to inject arbitrary OS commands and retrieve the output in the application's...

10AI score0.09528EPSS
Exploits5References1
CVE
CVE
added 2017/01/31 6:0 p.m.60 views

CVE-2016-10043

Radisys MRF Web Panel (SWMS) 9.0.1 is vulnerable to OS command injection via the MSM_MACRO_NAME POST parameter in /swms/ms.cgi. An attacker can use the pipe character (|) to inject arbitrary commands and retrieve output from responses, enabling possible unauthorized command execution, with risks ...

10CVSS9.9AI score0.09528EPSS
Exploits5References1Affected Software1
0day.today
0day.today
added 2017/01/27 12:0 a.m.65 views

Radisys MRF - Command Injection Vulnerability

Exploit for cgi platform in category web applications Title: MRF Web Panel OS Command Injection Vendor: Radisys Vendor Homepage: http://www.radisys.com Product: MRF Web Panel SWMS Version: 9.0.1 CVE: CVE-2016-10043 CWE: CWE-78 Risk Level: High Discovery: Filippos Mastrogiannis, Loukas Alkis &...

10CVSS0.3AI score0.09528EPSS
Exploits5
Rows per page
Query Builder