HIGH🇬🇧 English

CVE-2022-41675

CVSS 8.0v3.1pub. 2022-11-29upd. 2024-11-21

A remote attacker with general user privilege can inject malicious code in the form content of Raiden MAILD Mail Server website. Other users export form content as CSV file can trigger arbitrary code execution and allow the attacker to perform arbitrary system operation or disrupt service on the user side.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
  • Raidenmaild

    APP
    Raidenmaild
    < 4.7.4
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
RCE
CWE
Referencje

Powiązane podatności

CVE-2024-7693HIGH7.5ten sam produkt

Raiden MAILD Remote Management System from Team Johnlong Software has a Relative Path Traversal vulnerability,...

CVE-2022-41676MEDIUM5.4ten sam produkt

Raiden MAILD Mail Server website mail field has insufficient filtering for user input. A remote attacker with ...

CVE-2022-41675 — HIGH 8.0 | CVEbaza.pl