- Description
- A vulnerability in agent program of HelpU remote control solution could allow an authenticated remote attacker to execute arbitrary commands This vulnerability is due to insufficient input santization when communicating customer process.
- Source
- vuln@krcert.or.kr
- NVD status
- Analyzed
CVSS 3.1
- Type
- Primary
- Base score
- 8.8
- Impact score
- 5.9
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 6.5
- Impact score
- 6.4
- Exploitability score
- 8
- Vector string
- AV:N/AC:L/Au:S/C:P/I:P/A:P
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:helpu:helpuftclient:3.0.0.0:*:*:*:*:windows:*:*",
"vulnerable": true,
"matchCriteriaId": "D65D63E5-9478-4CB5-ABEC-58A6AB4D8241"
},
{
"criteria": "cpe:2.3:a:helpu:helpuftserver:3.0.0.0:*:*:*:*:windows:*:*",
"vulnerable": true,
"matchCriteriaId": "51FCBC1B-E6C0-481A-AA65-4F6A14C5E5ED"
},
{
"criteria": "cpe:2.3:a:helpu:helpuserver:1.0.0.2:*:*:*:*:windows:*:*",
"vulnerable": true,
"matchCriteriaId": "2F92BEDB-C1B4-4FD4-8540-A5090EF64F52"
},
{
"criteria": "cpe:2.3:a:helpu:helpuviewer:2018.5.21.0:*:*:*:*:windows:*:*",
"vulnerable": true,
"matchCriteriaId": "6DA81C9C-27A9-4BA9-AECD-8BFDCA46C13D"
}
],
"operator": "OR"
}
]
}
]