Lucene search

MitreCVELIST:CVE-2018-1000832

HistoryDec 20, 2018 - 3:00 p.m.

CVE-2018-1000832

2018-12-2015:00:00

mitre

www.cve.org

zoneminder

vulnerability

user-controlled parameter

disclosure of confidential data

denial of service

ssrf

remote code execution

AI Score

9.8

Confidence

High

EPSS

0.012

Percentile

85.2%

JSON

ZoneMinder version <= 1.32.2 contains a Other/Unknown vulnerability in User-controlled parameter that can result in Disclosure of confidential data, denial of service, SSRF, remote code execution.

References

0dd.zone/2018/10/28/zoneminder-Object-Injection/

github.com/ZoneMinder/zoneminder/issues/2271