2019-09-13 19:15:12 2019-09-13 23:01:49

The Create Discoveries feature of Open-AudIT before 3.2.0 allows an authenticated attacker to execute arbitrary OS commands via a crafted value for a URL field.

Vector

NETWORK

Complexity

LOW

Authentication

SINGLE_INSTANCE

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL
Opmantek Open-audit 1.0.3 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.0.4 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.0.5 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.0.6 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.1 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.2 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.2.1 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.3 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.3.1 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.3.2 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.4 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.5.1 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.5.2 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.5.3 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.6 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.6.2 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.6.4 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.8 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.8.2 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.8.4 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.10 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.12 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.12.2 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.12.4 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.12.6 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.12.8 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.12.8.1 ~~community~~~ (not an official CPE) Opmantek Open-audit 1.12.10 ~~community~~~ (not an official CPE) Opmantek Open-audit 2.0.1 ~~community~~~ (not an official CPE) Opmantek Open-audit 2.0.2 ~~community~~~ (not an official CPE) Opmantek Open-audit 2.0.4 ~~community~~~ (not an official CPE) Opmantek Open-audit 2.0.6 ~~community~~~ (not an official CPE) Opmantek Open-audit 2.0.8 ~~community~~~ (not an official CPE) Opmantek Open-audit 2.0.10 ~~community~~~ (not an official CPE) Opmantek Open-audit 2.0.11 ~~community~~~ (not an official CPE) Opmantek Open-audit 2.1 ~~community~~~ (not an official CPE) Opmantek Open-audit 2.1.0 ~~community~~~ (not an official CPE) Opmantek Open-audit 2.1.1 ~~community~~~ (not an official CPE) Opmantek Open-audit 2.2.0 ~~community~~~ (not an official CPE) Opmantek Open-audit 2.2.1 ~~community~~~ (not an official CPE) Opmantek Open-audit 2.2.2 ~~community~~~ (not an official CPE) Opmantek Open-audit 2.2.3 ~~community~~~ (not an official CPE) Opmantek Open-audit 2.2.4 ~~community~~~ (not an official CPE) Opmantek Open-audit 2.2.5 ~~community~~~ (not an official CPE) Opmantek Open-audit 2.2.6 ~~community~~~ (not an official CPE) Opmantek Open-audit 2.2.7 ~~community~~~ (not an official CPE) Opmantek Open-audit 2.3.0 ~~community~~~ (not an official CPE) Opmantek Open-audit 2.3.1 ~~community~~~ (not an official CPE) Opmantek Open-audit 2.3.2 ~~community~~~ (not an official CPE) Opmantek Open-audit 2.3.3 ~~community~~~ (not an official CPE) Opmantek Open-audit 3.0.0 ~~community~~~ (not an official CPE) Opmantek Open-audit 3.0.1 ~~community~~~ (not an official CPE) Opmantek Open-audit 3.0.2 ~~community~~~ (not an official CPE) Opmantek Open-audit 3.1.0 ~~community~~~ (not an official CPE) Opmantek Open-audit 3.1.1 ~~community~~~ (not an official CPE) Opmantek Open-audit 3.1.2 ~~community~~~ (not an official CPE)