Eval injection vulnerability in luci 0.26.0 allows remote authenticated users with certain permissions to execute arbitrary Python code via a crafted cluster configuration.
References
Configurations
History
No history.
Information
Published : 2014-10-15 14:55
Updated : 2024-02-28 12:20
NVD link : CVE-2014-3593
Mitre link : CVE-2014-3593
CVE.ORG link : CVE-2014-3593
JSON object : View
Products Affected
scientificlinux
- luci
CWE
CWE-94
Improper Control of Generation of Code ('Code Injection')