daemonControl in includes/functions.php in ZoneMinder before 1.32.3 allows command injection via shell metacharacters.
2019-02-18T00:29:00.493
2024-11-21T04:49:53.023
Modified
CVSSv3.0: 9.8 (CRITICAL)
AV:N/AC:L/Au:N/C:P/I:P/A:P
10.0
6.4
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Application | zoneminder | zoneminder | < 1.32.3 | Yes |