CVE-2018-1000048
8.8HIGHNASA RtRetrievalFramework version v1.0 contains a CWE-502 vulnerability in Data retrieval functionality of RtRetrieval framework that can result in remote code execution. This attack appear to be expl
게시됨: 2/9/2018업데이트됨: 11/21/2024
설명
NASA RtRetrievalFramework version v1.0 contains a CWE-502 vulnerability in Data retrieval functionality of RtRetrieval framework that can result in remote code execution. This attack appear to be exploitable via Victim tries to retrieve and process a weather data file.
AI 분석AI 기반
영향받는 제품
nasartretrievalframework
1.0
참조
- https://github.com/nasa/RtRetrievalFramework/issues/1Issue TrackingThird Party Advisory
- https://github.com/nasa/RtRetrievalFramework/issues/1Issue TrackingThird Party Advisory