Arbitrary Code Execution Vulnerability in Autodesk VRED Professional 2014 before SR1 SP8

Arbitrary Code Execution Vulnerability in Autodesk VRED Professional 2014 before SR1 SP8

CVE-2014-2967 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Autodesk VRED Professional 2014 before SR1 SP8 allows remote attackers to execute arbitrary code via Python os library calls in Python API commands to the integrated web server.

Learn more about our Web App Pen Testing.