CVE-2018-11139

EUVD-2018-3181
The '/common/ajax_email_connection_test.php' script in the Quest KACE System Management Appliance 8.0.318 is accessible by any authenticated user and can be abused to execute arbitrary commands on the system. This script is vulnerable to command injection via the unsanitized user input 'TEST_SERVER' sent to the script via the POST method.
OS Command Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.8 HIGH
NETWORK
LOW
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 96%
Affected Products (NVD)
VendorProductVersion
questkace_system_management_appliance
8.0.318
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://www.coresecurity.com/advisories/quest-kace-system-management-appliance-multiple-vulnerabilities
https://www.coresecurity.com/advisories/quest-kace-system-management-appliance-multiple-vulnerabilities