CVE-2017-9774

Description

Remote Code Execution was found in Horde_Image 2.x before 2.5.0 via a crafted GET request. Exploitation requires authentication.

Base Score

8.8

MODERATE

Vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Score

Exploitation Probability

5.331

Vulnerability	OS Platform
php-horde-image security update(DSA-4276-1) php-horde-image_2.3.6-1+deb9u1_all.deb	Linux

No records found