Vulnerability Details CVE-2019-7300
Artica Proxy 3.06.200056 allows remote attackers to execute arbitrary commands as root by reading the ressources/settings.inc ldap_admin and ldap_password fields, using these credentials at logon.php, and then entering the commands in the admin.index.php command-line field.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.027
EPSS Ranking 85.5%
CVSS Severity
CVSS v3 Score 7.2
CVSS v2 Score 9.0
Products affected by CVE-2019-7300
-
cpe:2.3:a:articatech:artica_proxy:3.06.200056