CVE-2018-6292

9.8CRITICAL

Key Information:

Vendor
Kofax
Status
SAPerion Web Client
Vendor
CVE Published:
12 February 2018

Summary

Remote Code Execution in Saperion Web Client version 7.5.2 83166.

Affected Version(s)

Saperion Web Client 7.5.2 83166

References

https://ics-cert.kaspersky.com/alerts/2018/02/12/multiple...
x_refsource_MISC
https://ics-cert.kaspersky.com/advisories/klcert-advisori...
x_refsource_MISC

EPSS Score

2% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.