Arbitrary Code Execution Vulnerability in COMPAREX Miss Marple Updater Service

Arbitrary Code Execution Vulnerability in COMPAREX Miss Marple Updater Service

CVE-2018-19234 · HIGH Severity

AV:N/AC:L/AU:S/C:C/I:C/A:C

The Miss Marple Updater Service in COMPAREX Miss Marple Enterprise Edition before 2.0 allows remote attackers to execute arbitrary code with SYSTEM privileges via vectors related to missing update validation.

Learn more about our Web Application Penetration Testing UK.