PT-2018-18881 · Open Audit · Open-Audit

Sureshbabu Narvaneni

·

Published

2018-04-19

·

Updated

2020-08-24

·

CVE-2018-9137

CVSS v3.1

6.8

Medium

VectorAV:N/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:N
Name of the Vulnerable Software and Affected Versions Open-AudIT versions prior to 2.2
Description The issue affects Open-AudIT, where a CSV injection is possible.
Recommendations For versions prior to 2.2, update to version 2.2 or later to resolve the issue.

Exploit

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-1236

Related Identifiers

CVE-2018-9137

Affected Products

Open-Audit