Spencer Gietzen

Pesquisador deRhino Security Labs
#13461de 53,635
19.7CVSS total
Vulnerabilidades · 3
Média
2
Alta
1
PT-2019-10993
9.0
2019-04-01
Audiocodes · Audiocodes 450Hd Ip Phone · CVE-2018-5757
Name of the Vulnerable Software and Affected Versions: AudioCodes 450HD IP Phone version 3.0.0.535.106 Description: An issue was discovered where the traceroute and ping functionality in the Monitoring page of the web UI uses a parameter in a request to `command.cgi` that unsafely puts user-alterable data directly into an OS command. This leads to remote code execution via shell metacharacters in the query string. Recommendations: For AudioCodes 450HD IP Phone version 3.0.0.535.106, consider restricting access to the Monitoring page in the web UI and the `command.cgi` endpoint to minimize the risk of exploitation. Avoid using the parameter in the request to `command.cgi` that allows user-alterable data to be put into an OS command until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2018-18389
5.4
2018-07-12
Mozilla · Firefox · CVE-2018-8024
Name of the Vulnerable Software and Affected Versions: Apache Spark versions 2.1.0 through 2.1.2 Apache Spark versions 2.2.0 through 2.2.1 Apache Spark version 2.3.0 Description: A malicious user can construct a URL pointing to a Spark cluster's UI's job and stage info pages. If a user is tricked into accessing the URL, it can be used to cause script to execute and expose information from the user's view of the Spark UI. Some browsers, like recent versions of Chrome and Safari, can block this type of attack, but current versions of Firefox (and possibly others) cannot. Recommendations: For Apache Spark versions 2.1.0 through 2.1.2, consider disabling access to the job and stage info pages in the Spark UI until a patch is available. For Apache Spark versions 2.2.0 through 2.2.1, consider disabling access to the job and stage info pages in the Spark UI until a patch is available. For Apache Spark version 2.3.0, consider disabling access to the job and stage info pages in the Spark UI until a patch is available. As a temporary workaround, consider restricting access to the Spark UI to minimize the risk of exploitation.
PT-2018-9289
5.3
2018-03-13
Jenkins · Jenkins Git Plugin · CVE-2018-1000110
Name of the Vulnerable Software and Affected Versions: Jenkins Git Plugin versions 3.7.0 and earlier Description: An improper authorization issue exists in the GitStatus.java component, allowing an attacker with network access to obtain a list of nodes and users. Recommendations: For Jenkins Git Plugin versions 3.7.0 and earlier, update to a version later than 3.7.0 to resolve the issue.