Overview
- Description
- A vulnerability in agent program of HelpU remote control solution could allow an authenticated remote attacker to execute arbitrary commands This vulnerability is due to insufficient input santization when communicating customer process.
- Source
- vuln@krcert.or.kr
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 8.8
- Impact score
- 5.9
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 6.5
- Impact score
- 6.4
- Exploitability score
- 8
- Vector string
- AV:N/AC:L/Au:S/C:P/I:P/A:P
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:helpu:helpuftclient:3.0.0.0:*:*:*:*:windows:*:*",
"vulnerable": true,
"matchCriteriaId": "D65D63E5-9478-4CB5-ABEC-58A6AB4D8241"
},
{
"criteria": "cpe:2.3:a:helpu:helpuftserver:3.0.0.0:*:*:*:*:windows:*:*",
"vulnerable": true,
"matchCriteriaId": "51FCBC1B-E6C0-481A-AA65-4F6A14C5E5ED"
},
{
"criteria": "cpe:2.3:a:helpu:helpuserver:1.0.0.2:*:*:*:*:windows:*:*",
"vulnerable": true,
"matchCriteriaId": "2F92BEDB-C1B4-4FD4-8540-A5090EF64F52"
},
{
"criteria": "cpe:2.3:a:helpu:helpuviewer:2018.5.21.0:*:*:*:*:windows:*:*",
"vulnerable": true,
"matchCriteriaId": "6DA81C9C-27A9-4BA9-AECD-8BFDCA46C13D"
}
],
"operator": "OR"
}
]
}
]