Rewterz Threat Advisory – CVE-2020-9498 – Apache Guacamole code execution vulnerability
July 6, 2020Rewterz Threat Advisory – CVE-2020-5599 – ICS: Mitsubishi Electric GOT2000 series command execution
July 7, 2020Rewterz Threat Advisory – CVE-2020-9498 – Apache Guacamole code execution vulnerability
July 6, 2020Rewterz Threat Advisory – CVE-2020-5599 – ICS: Mitsubishi Electric GOT2000 series command execution
July 7, 2020Severity
High
Analysis Summary
McAfee Network Security Management (NSM) could allow a local attacker to execute arbitrary commands on the system, caused by improper restriction of shell commands. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary commands and gain access to the root account.
Impact
Unauthorized Access
Affected Vendors
McAfee
Affected Products
- McAfee Network Security Management (NSM) 9.1.7.11
- McAfee Network Security Management (NSM) 10.1.7.6
Remediation
Update to Network Security Manager (NSM) 9.2.9.55 or 10.1.7.7.