← back
CVE-2022-27903

CVE-2022-27903

EPSS 2.5%
An OS Command Injection vulnerability in the configuration parser of Eve-NG Professional through 4.0.1-65 and Eve-NG Community through 2.0.3-112 allows a remote authenticated attacker to execute commands as root by editing virtualization command parameters of imported UNL files.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.eve-ng.net/https://www.eve-ng.net/index.php/documentation/release-notes/