An issue was discovered in BACKCLICK Professional 5.9.63. Due to an exposed internal communications interface, it is possible to execute arbitrary system commands on the server.
References
Link | Resource |
---|---|
https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2022-032.txt | Exploit Third Party Advisory |
https://www.syss.de/pentest-blog/vielfaeltige-schwachstellen-in-backclick-professional-syss-2022-026-bis-037 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-11-16T00:00:00
Updated: 2022-11-16T00:00:00
Reserved: 2022-10-29T00:00:00
Link: CVE-2022-44000
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-11-16T23:15:11.527
Modified: 2022-11-21T17:36:04.207
Link: CVE-2022-44000
JSON object: View
Redhat Information
No data.