VYPR
Unrated severityNVD Advisory· Published Jan 24, 2019· Updated Sep 16, 2024

CVE-2018-12237

CVE-2018-12237

Description

The Symantec Reporter CLI 10.1 prior to 10.1.5.6 and 10.2 prior to 10.2.1.8 is susceptible to an OS command injection vulnerability. An authenticated malicious administrator with Enable mode access can execute arbitrary OS commands with elevated system privileges.

Affected products

2
  • Symantec/Reporterllm-create
    Range: 10.1 < 10.1.5.6, 10.2 < 10.2.1.8
  • Symantec Corporation/Symantec Reporterv5
    Range: 10.1 prior to 10.1.5.6 and 10.2 prior to 10.2.1.8

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.