cve/CVE-2018-6961.md at 7482ec4521a75dd13882dc1283f17009c936e974

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-28 01:04:30 +00:00

0xMarcio ba290685fe Update CVE sources 2024-06-09 00:33

2024-06-09 00:33:16 +00:00

Description

VMware NSX SD-WAN Edge by VeloCloud prior to version 3.1.0 contains a command injection vulnerability in the local web UI component. This component is disabled by default and should not be enabled on untrusted networks. VeloCloud by VMware will be removing this service from the product in future releases. Successful exploitation of this issue could result in remote code execution.

POC

Reference

https://www.exploit-db.com/exploits/44959/
https://www.exploit-db.com/exploits/44959/

Github

https://github.com/0xT11/CVE-POC
https://github.com/ARPSyndicate/cvemon
https://github.com/Ostorlab/KEV
https://github.com/Ostorlab/known_exploited_vulnerbilities_detectors
https://github.com/bokanrb/CVE-2018-6961
https://github.com/hectorgie/PoC-in-GitHub
https://github.com/r3dxpl0it/CVE-2018-6961

1.2 KiB Raw Blame History

CVE-2018-6961

Description

POC

Reference

Github

1.2 KiB

Raw Blame History