daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Enhancement: vulnerabilities/other/h3c-imc-rce.yaml by mp

patch-1
MostInterestingBotInTheWorld 2022-06-01 16:14:54 -04:00
parent d6f3ba0a0e
commit aacdac2a50
1 changed files with 8 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
vulnerabilities/other/h3c-imc-rce.yaml
View File

@ -1,14 +1,18 @@
id: h3c-imc-rce
info:
name: H3c IMC RCE
name: H3c IMC - Remote Code Execution
author: pikpikcu
severity: critical
description: A vulnerability in H3C IMC allows remote unauthenticated attackers to cause the remote web application to execute arbitrary commands via the 'dynamiccontent.properties.xhtml' endpoint
description: H3c IMC allows remote unauthenticated attackers to cause the remote web application to execute arbitrary commands via the 'dynamiccontent.properties.xhtml' endpoint.
reference:
- https://mp.weixin.qq.com/s/BP9_H3lpluqIwL5OMIJlIw
metadata:
fofa-query: body="/imc/javax.faces.resource/images/login_help.png.jsf?ln=primefaces-imc-new-webui"
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
cvss-score: 10.0
cwe-id: CWE-77
tags: rce,h3c-imc
requests:
@ -38,3 +42,5 @@ requests:
- type: status
status:
- 200
# Enhanced by mp on 2022/06/01