|
|||
Rule General Information |
---|
Release Date: | 2021-06-17 | |
Rule Name: | Esafenet Electronic Document Security Management System Remote Code Execution Vulnerability | |
Severity: | ||
CVE ID: | ||
Rule Protection Details |
---|
Description: | Esafenet Electronic Document security management system is an electronic document security encryption software. The dataimport interface of the system has a remote command execution vulnerability, which is caused by insufficient verification of input parameters. Attackers can send requests with malicious commands to the server, and successfully exploit this vulnerability can lead to command execution and obtain server permissions. | |
Impact: | An attacker can execute arbitrary code via a successful exploit in the context of the vulnerable software. | |
Affected OS: | Windows, Linux, Others | |
Reference: | ||
Solutions |
---|
Please contact the software vendor to update the software patch. |