PT-2018-14431 · Escan · Escan Agent Application

Publicado

2018-12-20

Atualizado

2020-08-24

CVE-2018-18388

CVSS v3.1

9.8

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions eScan Agent Application version 4.0.2.98

Description The issue allows remote or local attackers to execute arbitrary commands by sending a carefully crafted payload to the TCP port 2222.

Recommendations For version 4.0.2.98, consider restricting access to TCP port 2222 to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2018-18388

Produtos afetados

Escan Agent Application

PT-2018-14431 · Escan · Escan Agent Application

CVE-2018-18388

Identificadores relacionados

Produtos afetados

Referências · 3