Arbitrary Code Execution Vulnerability in ProClima (Versions Prior to 8.0.0)

Arbitrary Code Execution Vulnerability in ProClima (Versions Prior to 8.0.0)

CVE-2019-6823 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

A CWE-94: Code Injection vulnerability exists in ProClima (all versions prior to version 8.0.0) which could allow an unauthenticated, remote attacker to execute arbitrary code on the targeted system in all versions of ProClima prior to version 8.0.0.

Learn more about our Web Application Penetration Testing UK.