CVE-2016-2002 in Verticaजानकारी

सारांश

द्वारा MITRE

The validateAdminConfig handler in the Analytics Management Console in HPE Vertica 7.0.x before 7.0.2.12, 7.1.x before 7.1.2-12, and 7.2.x before 7.2.2-1 allows remote attackers to execute arbitrary commands via the mcPort parameter, aka ZDI-CAN-3417.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

आरक्षित करना

21/01/2016

प्रकटीकरण

20/04/2016

संयम

स्वीकृत

प्रविष्टि

VDB-82724

CPE

तैयार

CWE

CWE-77 (पुष्टि की गई)

CVSS

9.8 (NVD)

EPSS

0.02938

KEV

नहीं

गतिविधियाँ

बहुत कम

स्रोत

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-2002
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-2002
CVE Details	https://www.cvedetails.com/cve/CVE-2016-2002/

◂ पिछला सिंहावलोकन अगला ▸

Interested in the pricing of exploits?

See the underground prices here!