CVE-2017-14001

Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 26/09/2017 Updated: 09/10/2019

CVSS v2 Base Score: 9 | Impact Score: 10 | Exploitability Score: 8

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 801

Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C

An Improper Neutralization of Special Elements used in an OS Command issue exists in Digium Asterisk GUI 2.1.0 and prior. An OS command injection vulnerability has been identified that may allow the execution of arbitrary code on the system through the inclusion of OS commands in the URL request of the program.

Vulnerable Product	Search on Vulmon	Subscribe to Product
digium asterisk gui

CWE-78 https://ics-cert.us-cert.gov/advisories/ICSA-17-264-03 http://www.securityfocus.com/bid/100950 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2017-14001

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect