Arbitrary OS Command Execution in Ubuntu14.04 ORCA (Online Receipt Computer Advantage) 4.8.0

Arbitrary OS Command Execution in Ubuntu14.04 ORCA (Online Receipt Computer Advantage) 4.8.0

CVE-2018-0643 · HIGH Severity

AV:A/AC:M/AU:S/C:C/I:C/A:C

Ubuntu14.04 ORCA (Online Receipt Computer Advantage) 4.8.0 (panda-server) 1:1.4.9+p41-u4jma1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via unspecified vectors.

Learn more about our Cis Benchmark Audit For Server Software.