CVE-2017-6087

Name of the Vulnerable Software and Affected Versions EyesOfNetwork versions 5.0 and earlier

Description The issue allows remote authenticated users to execute arbitrary code via shell metacharacters in the selected events[] parameter. This can occur in the acknowledge, delete, or ownDisown function in module/monitoring ged/ged functions.php or the module parameter to module/index.php.

Recommendations For EyesOfNetwork versions 5.0 and earlier, consider restricting access to the module/monitoring ged/ged functions.php and module/index.php files until a patch is available. As a temporary workaround, avoid using the selected events[] parameter in the affected functions and API endpoints.