Softing uaGate SI 1.60.01 Improper Neutralization of Special Elements used in an OS Command (‘OS Command Injection’) Vulnerability

Published on December 1st, 2019
Summary

Softing uaGate SI 1.60.01 suffers from improper neutralization of special elements used in an os command (‘OS Command Injection’) vulnerability

Credit:

The information has been provided by Vendor

The original article can be found at: https://security.mioso.com/CVE-2019-11527-en.html


Details

An issue was discovered in Softing uaGate SI 1.60.01. A CGI script is vulnerable to command injection with a maliciously crafted url parameter.

Vulnerable Systems:

Softing uaGate SI 1.60.01 

CVE Information:

CVE-2019-11527 

Disclosure Timeline:
Published Date:10/10/2019

Categories: FeaturedNews
Tags:

Related Posts

News

Zoho ManageEngine OpManager before 12.4 Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) Vulnerability

News

MiniShare 1.4.1 Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability

News

NETGEAR JNR1010 devices before 1.0.0.32 Cross-Site Request Forgery (CSRF) Vulnerability