Sed Injection Vulnerability in GitHub repository hestiacp/hestiacp prior to 1.5.12. An authenticated remote attacker with low privileges can execute arbitrary code under root context.
References
Link | Resource |
---|---|
https://github.com/hestiacp/hestiacp/commit/d50f95cf208049dfb6ac67a8020802121745bd60 | Patch |
https://huntr.dev/bounties/09e69dff-f281-4e51-8312-ed7ab7606338 | Exploit Issue Tracking Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: @huntrdev
Published: 2022-04-28T10:05:09
Updated: 2022-04-28T10:05:09
Reserved: 2022-04-28T00:00:00
Link: CVE-2022-1509
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-04-28T10:15:07.870
Modified: 2024-02-14T20:40:46.587
Link: CVE-2022-1509
JSON object: View
Redhat Information
No data.