CVE-2019-6579

Name of the Vulnerable Software and Affected Versions Spectrum Power 4 (with Web Office Portal) (affected versions not specified)

Description A security issue has been identified that allows an attacker with network access to the web server on port 80/TCP or 443/TCP to execute system commands with administrative privileges. This issue can be exploited by an unauthenticated attacker without requiring any user interaction, potentially compromising the confidentiality, integrity, or availability of the targeted system. The issue is related to input control. At the time of reporting, no public exploitation of this issue was known.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.