CVE-2017-2128

Summary

Security guide for website operators allows remote attackers to execute arbitrary OS commands via specially crafted saved data.

Affected Software

VendorProductVersion RangeStatus
INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA)Security guide for website operatorsAll versionsaffected

Weaknesses

  • OS Command Injection

ADP Enrichment

CVE Program Container

Additional References

References