EPSS
Percentile
81.3%
hawtio-system is vulnerable to remote code execution. A lack of validation on uploaded files allow a remote attacker to upload a specially crafted file and execute arbitrary commands on the target machine.
www.securityfocus.com/bid/96036
access.redhat.com/errata/RHSA-2018:0319
bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2617
github.com/hawtio/hawtio/commit/8cf6848f4d4d4917a4551c9aa49dc00f699eb569