delivery.php in the Passive Capture Application (PCA) web console in IBM Tealeaf CX 7.x, 8.x up to and including 8.6, 8.7 before FP2, and 8.8 before FP2 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the testconn_host parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm tealeaf cx 7.1 |
||
ibm tealeaf cx 8.5 |
||
ibm tealeaf cx 8.6 |
||
ibm tealeaf cx 8.3 |
||
ibm tealeaf cx 8.4 |
||
ibm tealeaf cx 7.2 |
||
ibm tealeaf cx 8.0 |
||
ibm tealeaf cx 8.7 |
||
ibm tealeaf cx 8.8 |
||
ibm tealeaf cx 8.1 |
||
ibm tealeaf cx 8.2 |