← voltar
CVE-2016-11017

CVE-2016-11017

EPSS 4.4%
The application login page in AKIPS Network Monitor 15.37 through 16.5 allows a remote unauthenticated attacker to execute arbitrary OS commands via shell metacharacters in the username parameter (a failed login attempt returns the command-injection output to a limited login failure field). This is fixed in 16.6.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://ctrlu.net/vuln/0002.htmlhttps://www.exploit-db.com/exploits/39564