Prima Systems FlexAir, Versions 2.3.38 and prior. The application incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component, which could allow attackers to execute commands directly on the operating system.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-07-01T18:12:44

Updated: 2024-08-04T20:54:28.427Z

Reserved: 2019-02-09T00:00:00

Link: CVE-2019-7670

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-07-01T19:15:11.790

Modified: 2024-11-21T04:48:30.383

Link: CVE-2019-7670

cve-icon Redhat

No data.