Vulnerability Details CVE-2016-2297
Meteocontrol WEB'log Basic 100, Light, Pro, and Pro Unlimited allows remote attackers to execute arbitrary commands via an "access command shell-like feature."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.4%
CVSS Severity
CVSS v3 Score 9.4
CVSS v2 Score 9.7
References
Products affected by CVE-2016-2297
-
cpe:2.3:a:meteocontrol:web'log_basic_100:-
-
cpe:2.3:a:meteocontrol:web'log_light:-
-
cpe:2.3:a:meteocontrol:web'log_pro:-
-
cpe:2.3:a:meteocontrol:web'log_pro_unlimited:-