CVE-2012-0261

license.php in system-portal before 1.6.2 in op5 Monitor and op5 Appliance before 5.5.3 allows remote attackers to execute arbitrary commands via shell metacharacters in the timestamp parameter for an install action.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:op5:monitor:*:*:*:*:*:*:*:*
cpe:2.3:a:op5:monitor:5.3.5:*:*:*:*:*:*:*
cpe:2.3:a:op5:monitor:5.4.0:*:*:*:*:*:*:*
cpe:2.3:a:op5:monitor:5.4.2:*:*:*:*:*:*:*
cpe:2.3:a:op5:monitor:5.5.0:*:*:*:*:*:*:*
cpe:2.3:a:op5:system-portal:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2013-12-31 20:55

Updated : 2024-02-04 18:16


NVD link : CVE-2012-0261

Mitre link : CVE-2012-0261

CVE.ORG link : CVE-2012-0261


JSON object : View

Products Affected

op5

  • system-portal
  • monitor
CWE
CWE-94

Improper Control of Generation of Code ('Code Injection')