Vulnerabilities > CVE-2021-40612 - Unspecified vulnerability in Opmantek Open-Audit
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
An issue was discovered in Opmantek Open-AudIT after 3.5.0. Without authentication, a vulnerability in code_igniter/application/controllers/util.php allows an attacker perform command execution without echoes.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 10 |
References
- https://community.opmantek.com/pages/viewpage.action?pageId=65504438
- https://community.opmantek.com/pages/viewpage.action?pageId=65504438
- https://github.com/Opmantek/open-audit/commit/c7595cbb092e410a487f03c0eb536cf19e538860
- https://github.com/Opmantek/open-audit/commit/c7595cbb092e410a487f03c0eb536cf19e538860