The server in Bcfg2 1.1.2 and earlier, and 1.2 prerelease, allows remote attackers to execute arbitrary commands via shell metacharacters in data received from a client.
Max CVSS
9.3
EPSS Score
1.23%
Published
2011-09-16
Updated
2011-09-23
1 vulnerabilities found