How severe is CVE-2018-17888?

CVE-2018-17888 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2018-17888

Name: nuuo_cms
Author: nuuo

9.8CRITICAL

NUUO CMS all versions 3.1 and prior, The application uses a session identification mechanism that could allow attackers to obtain the active session ID, which could allow arbitrary remote code executi

发布于: 10/12/2018更新于: 11/21/2024

描述

NUUO CMS all versions 3.1 and prior, The application uses a session identification mechanism that could allow attackers to obtain the active session ID, which could allow arbitrary remote code execution.

AI分析AI驱动

受影响产品

nuuonuuo_cms

参考资料

http://www.securityfocus.com/bid/105717
Third Party AdvisoryVDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-18-284-02
PatchThird Party AdvisoryUS Government Resource
http://www.securityfocus.com/bid/105717
Third Party AdvisoryVDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-18-284-02
PatchThird Party AdvisoryUS Government Resource