CVE-2016-6534

CVE-2016-6534

EPSS 1.3%

Opmantek NMIS before 4.3.7c has command injection via man, finger, ping, trace, and nslookup in the tools.pl CGI script. Versions before 8.5.12G might be affected in non-default configurations.

Affected products

n/a · Opmantek NMIS before 8.5.12G

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://community.rapid7.com/community/infosec/blog/2016/09/07/multiple-disclosures-for-multiple-network-management-systems-part-2