|
|
|||
| Rule General Information |
|---|
| Release Date: | 2024-05-06 | |
| Rule Name: | Esafenet CDG Remote Code Execution Vulnerability | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Esafenet Electronic Document security management system is an electronic document security encryption software.The uploadFile interface has a file upload vulnerability, attackers can upload malicious jsp files to the server, using this vulnerability attackers can execute arbitrary code on the server, get the control rights of the target server. | |
| Impact: | An attacker can execute arbitrary code via a successful exploit in the context of the vulnerable software. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | ||
| Solutions |
|---|
| The vendors have released upgrade patches to fix vulnerabilities, please visit: http://www.esafenet.com |