CVE-2019-13552

Summary

In WebAccess versions 8.4.1 and prior, multiple command injection vulnerabilities are caused by a lack of proper validation of user-supplied data and may allow arbitrary file deletion and remote code execution.

Affected Software

VendorProductVersion RangeStatus
n/aWebAccessversions 8.4.1 and prioraffected

Weaknesses

  • CWE-77: COMMAND INJECTION CWE-77

ADP Enrichment

CVE Program Container

Additional References

References