07 Fév 2020
Vulnérabilité CVE-2014-5468 CVE Vulnerability
A File Inclusion vulnerability exists in Railo 4.2.1 and earlier via a specially-crafted URL request to the thumbnail.cfm to specify a malicious PNG file, which could let a remote malicious user obtain sensitive information or execute arbitrary code. (CVSS:6.8) (Last Update:2020-02-11)
Vulnerability Details : (1 public exploit) A File Inclusion vulnerability exists in Railo 4.2.1 and earlier via a specially-crafted URL request to the thumbnail.cfm to specify a malicious PNG file, which could let a remote malicious user obtain sensitive information or execute arbitrary code. Publish Date : 2020-02-07 Last Update Date : 2020-02-11 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2014-5468
- Number Of Affected Versions By Product
- References For CVE-2014-5468
| |||||||||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2014-5468
|