CVE-2022-2143

Critical

The affected product is vulnerable to two instances of command injection, which may allow an attacker to remotely execute arbitrary code.

icscert·CWE-77·Published 2022-07-22

CVSS

9.8

EPSS

0.59

KEV

Exploits

cve.orgen

137 chars

The affected product is vulnerable to two instances of command injection, which may allow an attacker to remotely execute arbitrary code.

NVDen

137 chars

The affected product is vulnerable to two instances of command injection, which may allow an attacker to remotely execute arbitrary code.

El producto afectado es vulnerable a dos instancias de inyección de comandos, que pueden permitir a un atacante ejecutar remotamente código arbitrario

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	cve.org	9.8	—	—	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
3.1	Primary	NVD	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
3.1	Primary	cve.org	9.8	—	—	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
3.1	Secondary	NVD	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H