CVE-2018-13140
N/A
N/A
Summary
Druide Antidote through 9.5.1 on Windows and Linux allows remote code execution through the update mechanism by leveraging use of HTTP to download installation packages.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://sysdream.com/news/lab/2018-09-21-cve-2018-13140-antidote-remote-code-execution-against-the-update-component/
- http://seclists.org/fulldisclosure/2018/Sep/38
- http://packetstormsecurity.com/files/149468/Antidote-9.5.1-Code-Execution.html
References
- https://sysdream.com/news/lab/2018-09-21-cve-2018-13140-antidote-remote-code-execution-against-the-update-component/
- http://seclists.org/fulldisclosure/2018/Sep/38
- http://packetstormsecurity.com/files/149468/Antidote-9.5.1-Code-Execution.html
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.