ManageOne versions 6.5.1.1.B010, 6.5.1.1.B020, 6.5.1.1.B030, 6.5.1.1.B040, ,6.5.1.1.B050, 8.0.0 and 8.0.1 have a command injection vulnerability. An attacker with high privileges may exploit this vulnerability through some operations on the plug-in component. Due to insufficient input validation of some parameters, the attacker can exploit this vulnerability to inject commands to the target device.
CPE | Name | Operator | Version |
---|---|---|---|
manageone | eq | 6.5.0 | |
manageone | eq | 6.5.1.1 b10 | |
manageone | eq | 6.5.1.1 b20 | |
manageone | eq | 6.5.1.1 b30 | |
manageone | eq | 6.5.1.1 b40 | |
manageone | eq | 6.5.1.1 b50 | |
manageone | eq | 8.0.0 | |
manageone | eq | 8.0.1 |