Critical severity9.8NVD Advisory· Published Jun 13, 2018· Updated Jun 17, 2026

CVE-2018-12268

Description

acccheck.pl in acccheck 0.2.1 allows Command Injection via shell metacharacters in a username or password file, as demonstrated by injection into an smbclient command line.

Affected products

Nccgroup/Acccheckinferred
Range: = 0.2.1
Acccheck/acccheckllm-create
Range: <=0.2.1

Patches

Vulnerability mechanics

References

b3n7s.github.io/acccheck-command-injection.htmlnvdExploitThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000