The affected On-Premise cnMaestro allows an unauthenticated attacker to access the cnMaestro server and execute arbitrary code in the privileges of the web server. This lack of validation could allow an attacker to append arbitrary data to the logger command.
References
Link | Resource |
---|---|
https://www.cisa.gov/uscert/ics/advisories/icsa-22-132-04 | Third Party Advisory US Government Resource |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: icscert
Published: 2022-05-12T00:00:00
Updated: 2022-05-17T20:10:59
Reserved: 2022-04-14T00:00:00
Link: CVE-2022-1357
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-05-17T21:15:07.920
Modified: 2022-06-06T17:57:46.113
Link: CVE-2022-1357
JSON object: View
Redhat Information
No data.
CWE