Vulnerability CVE-2022-45462


Published: 2022-11-23

Description:
Alarm instance management has command injection when there is a specific command configured. It is only for logged-in users. We recommend you upgrade to version 2.0.6 or higher

Type:

CWE-77

(Improper Neutralization of Special Elements used in a Command ('Command Injection'))

 References:
https://lists.apache.org/thread/2f126y32bf1v3mvxkdgt2jr5j3l1t01w

Copyright 2022, cxsecurity.com

 

Back to Top