Exploit for #VU97315 OS Command Injection in VICIdial
Vulnerability identifier: #VU97315
Vulnerability risk: Low
CVSSv4.0: 8.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Clear]
CVE-ID:
CWE-ID:
CWE-78
Exploitation vector: Network
Exploits in database: 2
- October 1, 2024
- VICIdial Authenticated Remote Code Execution [Metasploit]
- September 20, 2024
- CVE-2024-8504 [Github]
Vulnerable software:
VICIdial
Other software /
Other software solutions
Vendor: Mike Coate, Matt Florell
