A vulnerability in the administration console of Micro Focus GroupWise prior to version 18.0.2 may allow a remote attacker authenticated as an administrator to upload files to an arbitrary path on the server. In certain circumstances this could result in remote code execution.
References
Link | Resource |
---|---|
https://www.novell.com/support/kb/doc.php?id=7023223 |
Configurations
History
07 Nov 2023, 02:52
Type | Values Removed | Values Added |
---|---|---|
References | () https://www.novell.com/support/kb/doc.php?id=7023223 - |
Information
Published : 2018-08-01 20:29
Updated : 2024-02-28 16:48
NVD link : CVE-2018-12468
Mitre link : CVE-2018-12468
CVE.ORG link : CVE-2018-12468
JSON object : View
Products Affected
microfocus
- groupwise
CWE
CWE-434
Unrestricted Upload of File with Dangerous Type