Remote Code Execution Vulnerability in Blade Shadow Network Protocol

Remote Code Execution Vulnerability in Blade Shadow Network Protocol

CVE-2019-16110 · HIGH Severity

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

The network protocol of Blade Shadow though 2.13.3 allows remote attackers to take control of a Shadow instance and execute arbitrary code by only knowing the victim's IP address, because packet data can be injected into the unencrypted UDP packet stream.

Learn more about our Network Penetration Testing.