CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS
Percentile
18.9%
An issue discovered in import host feature in Ab Initio Metadata Hub and Authorization Gateway before 4.3.1.1 allows attackers to run arbitrary code via crafted modification of server configuration.
Vendor | Product | Version | CPE |
---|---|---|---|
abinitio | authorization_gateway | * | cpe:2.3:a:abinitio:authorization_gateway:*:*:*:*:*:*:*:* |
abinitio | authorization_gateway | 4.1.5.10 | cpe:2.3:a:abinitio:authorization_gateway:4.1.5.10:*:*:*:*:*:*:* |
abinitio | authorization_gateway | 4.1.6.11 | cpe:2.3:a:abinitio:authorization_gateway:4.1.6.11:*:*:*:*:*:*:* |
abinitio | authorization_gateway | 4.2.1.6 | cpe:2.3:a:abinitio:authorization_gateway:4.2.1.6:*:*:*:*:*:*:* |
abinitio | authorization_gateway | 4.2.2.8 | cpe:2.3:a:abinitio:authorization_gateway:4.2.2.8:*:*:*:*:*:*:* |
abinitio | authorization_gateway | 4.2.3.4 | cpe:2.3:a:abinitio:authorization_gateway:4.2.3.4:*:*:*:*:*:*:* |
abinitio | authorization_gateway | 4.3.1.0 | cpe:2.3:a:abinitio:authorization_gateway:4.3.1.0:*:*:*:*:*:*:* |
abinitio | metadata_hub | * | cpe:2.3:a:abinitio:metadata_hub:*:*:*:*:*:*:*:* |
abinitio | metadata_hub | 4.1.5.10 | cpe:2.3:a:abinitio:metadata_hub:4.1.5.10:*:*:*:*:*:*:* |
abinitio | metadata_hub | 4.1.6.11 | cpe:2.3:a:abinitio:metadata_hub:4.1.6.11:*:*:*:*:*:*:* |