OS Command Injection vulnerability in HGiga iSherlock 4.5 and 5.5 (iSherlock-user modules)

OS Command Injection vulnerability in HGiga iSherlock 4.5 and 5.5 (iSherlock-user modules)

CVE-2023-37292 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in HGiga iSherlock 4.5 (iSherlock-user modules), HGiga iSherlock 5.5 (iSherlock-user modules) allows OS Command Injection.This issue affects iSherlock 4.5: before iSherlock-user-4.5-174; iSherlock 5.5: before iSherlock-user-5.5-174.

Learn more about our User Device Pen Test.