|
|||
Rule General Information |
---|
Release Date: | 2020-08-25 | |
Rule Name: | Weaver e-mobile OGNL Code Injection Vulnerability | |
Severity: | ||
CVE ID: | ||
Rule Protection Details |
---|
Description: | Weaver provides mobile office, wechat office, collaborative office (OA), process management, information portal, knowledge management, fee control management and other functions, which is suitable for mobile phones and PCS, and is one of the mainstream OA systems today. OGNL code injection vulnerability exists in the Weaver e-mobile platform. An attacker can execute arbitrary system commands with the message parameter. | |
Impact: | An attacker could exploit this vulnerability to have unspecified effect. | |
Affected OS: | Windows | |
Reference: | ||
Solutions |
---|
Please contact the software vendor to update the software patch. |