Vulnerability Details CVE-2008-1381
ZoneMinder before 1.23.3 allows remote authenticated users, and possibly unauthenticated attackers in some installations, to execute arbitrary commands via shell metacharacters in a crafted URL.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.015
EPSS Ranking 80.3%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/29995
- http://secunia.com/advisories/30189
- http://www.awe.com/mark/blog/200804272230.html
- http://www.securityfocus.com/bid/28968
- http://www.zoneminder.com/wiki/index.php/Change_History#Release_1.23.3
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42046
- https://www.redhat.com/archives/fedora-package-announce/2008-May/msg00078.html
- https://www.redhat.com/archives/fedora-package-announce/2008-May/msg00085.html
- http://secunia.com/advisories/29995
- http://secunia.com/advisories/30189
- http://www.awe.com/mark/blog/200804272230.html
- http://www.securityfocus.com/bid/28968
- http://www.zoneminder.com/wiki/index.php/Change_History#Release_1.23.3
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42046
- https://www.redhat.com/archives/fedora-package-announce/2008-May/msg00078.html
- https://www.redhat.com/archives/fedora-package-announce/2008-May/msg00085.html
Products affected by CVE-2008-1381
-
cpe:2.3:a:zoneminder:zoneminder:0.0.1
-
cpe:2.3:a:zoneminder:zoneminder:0.9.10
-
cpe:2.3:a:zoneminder:zoneminder:0.9.11
-
cpe:2.3:a:zoneminder:zoneminder:0.9.12
-
cpe:2.3:a:zoneminder:zoneminder:0.9.13
-
cpe:2.3:a:zoneminder:zoneminder:0.9.14
-
cpe:2.3:a:zoneminder:zoneminder:0.9.15
-
cpe:2.3:a:zoneminder:zoneminder:0.9.16
-
cpe:2.3:a:zoneminder:zoneminder:0.9.7
-
cpe:2.3:a:zoneminder:zoneminder:0.9.8
-
cpe:2.3:a:zoneminder:zoneminder:0.9.9
-
cpe:2.3:a:zoneminder:zoneminder:1.17.0
-
cpe:2.3:a:zoneminder:zoneminder:1.17.1
-
cpe:2.3:a:zoneminder:zoneminder:1.17.2
-
cpe:2.3:a:zoneminder:zoneminder:1.18.0
-
cpe:2.3:a:zoneminder:zoneminder:1.18.1
-
cpe:2.3:a:zoneminder:zoneminder:1.19.0
-
cpe:2.3:a:zoneminder:zoneminder:1.19.1
-
cpe:2.3:a:zoneminder:zoneminder:1.19.2
-
cpe:2.3:a:zoneminder:zoneminder:1.19.3
-
cpe:2.3:a:zoneminder:zoneminder:1.19.4
-
cpe:2.3:a:zoneminder:zoneminder:1.19.5
-
cpe:2.3:a:zoneminder:zoneminder:1.20.0
-
cpe:2.3:a:zoneminder:zoneminder:1.20.1
-
cpe:2.3:a:zoneminder:zoneminder:1.21.0
-
cpe:2.3:a:zoneminder:zoneminder:1.21.1
-
cpe:2.3:a:zoneminder:zoneminder:1.21.2
-
cpe:2.3:a:zoneminder:zoneminder:1.21.3
-
cpe:2.3:a:zoneminder:zoneminder:1.21.4
-
cpe:2.3:a:zoneminder:zoneminder:1.22.0
-
cpe:2.3:a:zoneminder:zoneminder:1.22.1
-
cpe:2.3:a:zoneminder:zoneminder:1.22.2
-
cpe:2.3:a:zoneminder:zoneminder:1.22.3
-
cpe:2.3:a:zoneminder:zoneminder:1.23.0
-
cpe:2.3:a:zoneminder:zoneminder:1.23.1
-
cpe:2.3:a:zoneminder:zoneminder:1.23.2