CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
53.0%
Xangati XSR before 11 and XNR before 7 allows remote attackers to execute arbitrary commands via shell metacharacters in a gui_input_test.pl params parameter to servlet/Installer.
Vendor | Product | Version | CPE |
---|---|---|---|
xangati | xangati_software_release | - | cpe:2.3:a:xangati:xangati_software_release:-:*:*:*:*:*:*:* |
xangati | xangati_xnr | - | cpe:2.3:a:xangati:xangati_xnr:-:*:*:*:*:*:*:* |