|
|
|||
| Rule General Information |
|---|
| Release Date: | 2024-11-19 | |
| Rule Name: | Kingdee EAS appUtil.jsp Remote Command Execution Vulnerability | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Kingdee EAS and Kingdee EAS Cloud have file upload vulnerabilities in multiple versions. Unauthorized attackers can perform remote code execution and control the server through specially crafted request packages or upload malicious webshell files. | |
| Impact: | An attacker can execute arbitrary command via a successful exploit in the context of the vulnerable software. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | ||
| Solutions |
|---|
| Please contact the software vendor to update the software patch. |