Idera: >> Uptime Infrastructure Monitor >> 7.4.0 Security Vulnerabilities
An issue was discovered in post2file.php in Up.Time Monitoring Station 7.5.0 (build 16) and 7.4.0 (build 13). It allows an attacker to upload an arbitrary file, such as a .php file that can execute arbitrary OS commands.
CVSS Score
9.8
EPSS Score
0.026
Published
2018-08-27
The up.time client in Idera Uptime Infrastructure Monitor through 7.6 allows remote attackers to obtain potentially sensitive version, OS, process, and event-log information via a command.
CVSS Score
5.3
EPSS Score
0.003
Published
2015-12-31