Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2017-14198

An issue was discovered in Squiz Matrix before 5.3.6.1 and 5.4.x before 5.4.1.3. Authenticated users with permissions to edit design assets can cause Remote Code Execution (RCE) via a maliciously crafted time_format tag.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.015
EPSS Ranking 80.2%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.5
Products affected by CVE-2017-14198
  • Squiz » Matrix » Version: 5.3.0.0
    cpe:2.3:a:squiz:matrix:5.3.0.0
  • Squiz » Matrix » Version: 5.3.1.0
    cpe:2.3:a:squiz:matrix:5.3.1.0
  • Squiz » Matrix » Version: 5.3.1.1
    cpe:2.3:a:squiz:matrix:5.3.1.1
  • Squiz » Matrix » Version: 5.3.2.0
    cpe:2.3:a:squiz:matrix:5.3.2.0
  • Squiz » Matrix » Version: 5.3.2.1
    cpe:2.3:a:squiz:matrix:5.3.2.1
  • Squiz » Matrix » Version: 5.3.3.0
    cpe:2.3:a:squiz:matrix:5.3.3.0
  • Squiz » Matrix » Version: 5.3.4.0
    cpe:2.3:a:squiz:matrix:5.3.4.0
  • Squiz » Matrix » Version: 5.3.4.1
    cpe:2.3:a:squiz:matrix:5.3.4.1
  • Squiz » Matrix » Version: 5.3.4.2
    cpe:2.3:a:squiz:matrix:5.3.4.2
  • Squiz » Matrix » Version: 5.3.5.0
    cpe:2.3:a:squiz:matrix:5.3.5.0
  • Squiz » Matrix » Version: 5.3.5.1
    cpe:2.3:a:squiz:matrix:5.3.5.1
  • Squiz » Matrix » Version: 5.3.5.2
    cpe:2.3:a:squiz:matrix:5.3.5.2
  • Squiz » Matrix » Version: 5.3.6.0
    cpe:2.3:a:squiz:matrix:5.3.6.0
  • Squiz » Matrix » Version: 5.4.0.0
    cpe:2.3:a:squiz:matrix:5.4.0.0
  • Squiz » Matrix » Version: 5.4.0.1
    cpe:2.3:a:squiz:matrix:5.4.0.1
  • Squiz » Matrix » Version: 5.4.0.2
    cpe:2.3:a:squiz:matrix:5.4.0.2
  • Squiz » Matrix » Version: 5.4.0.3
    cpe:2.3:a:squiz:matrix:5.4.0.3
  • Squiz » Matrix » Version: 5.4.1.0
    cpe:2.3:a:squiz:matrix:5.4.1.0
  • Squiz » Matrix » Version: 5.4.1.1
    cpe:2.3:a:squiz:matrix:5.4.1.1
  • Squiz » Matrix » Version: 5.4.1.2
    cpe:2.3:a:squiz:matrix:5.4.1.2


Products
Pricing
Contact Us

Shodan ® - All rights reserved