Orpak: >> Siteomat >> 6.4.414.084 Security Vulnerabilities
A stack buffer overflow exists in one of the Orpak SiteOmat CGI components, allowing for remote code execution. The vulnerability affects all versions prior to 2017-09-25.
CVSS Score
9.8
EPSS Score
0.145
Published
2019-06-03
The Orpak SiteOmat OrCU component is vulnerable to code injection, for all versions prior to 2017-09-25, due to a search query that uses a direct shell command. By tampering with the request, an attacker is able to run shell commands and receive valid output from the device.
CVSS Score
9.8
EPSS Score
0.018
Published
2019-06-03