← volver
CVE-2021-46686

CVE-2021-46686

CVSS 9.8 CRITICALEPSS 1.4%CWE-78
Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in acmailer CGI ver.4.0.3 and earlier and acmailer DB ver.1.1.5 and earlier. If this vulnerability is exploited, an arbitrary OS command may be executed by an attacker.
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Productos afectados
Extra Innovation Inc. · acmailer CGIExtra Innovation Inc. · acmailer DB

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://acmailer.jp/info/de.cgi?id=103https://jvn.jp/en/jp/JVN96957439/https://www.acmailer.jp/info/de.cgi?id=102