CVE-2019-15014
Description
A command injection vulnerability exists in the Zingbox Inspector CLI that allows for an authenticated user to execute arbitrary system commands. (Ref: CVE-2019-15014)The vulnerability allows for authenticated users to execute arbitrary commands within the product CLI console.This issue affects Zingbox Inspector, versions 1.286 and earlier.
Risk Information
Base Score
8.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
6.219
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Improper Neutralization of Special Elements used in an OS Command (OS Command Injection) Vulnerability (CVE-2019-15014) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234