Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:37203
HistorySep 20, 2022 - 3:19 p.m.

Remote Code Execution

2022-09-2015:19:11
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
remote code execution
vulnerability
uploaded malicious code
wrapper method
software

EPSS

0.002

Percentile

59.8%

d8s_domains is vulnerable to remote code execution. A potential code-execution backdoor inserted by a third party allows an attacker to upload and execute malicious code on the system under attack, through the vulnerable wrapper method.

Affected configurations

Vulners
Node
democritusd8s-domainsMatch0.1.0python
OR
democritusd8s-domainsMatch0.1.0python
VendorProductVersionCPE
democritusd8s-domains0.1.0cpe:2.3:a:democritus:d8s-domains:0.1.0:*:*:*:*:python:*:*

EPSS

0.002

Percentile

59.8%

Related for VERACODE:37203