An arbitrary file upload vulnerability in the apiImportLabs function in api_labs.php of EVE-NG 2.0.3-112 Community allows attackers to execute arbitrary code via a crafted UNL file.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
http://eve-ng.com | |
https://erpaciocco.github.io/2022/eve-ng-rce/ |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-20T00:00:00
Updated: 2024-08-03T07:19:05.677Z
Reserved: 2022-05-23T00:00:00
Link: CVE-2022-31366
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-10-20T12:15:09.677
Modified: 2022-10-21T16:18:59.077
Link: CVE-2022-31366
Redhat
No data.