Microvirt MEmu CVE-2019-14514 Command Injection Vulnerability
Description
An issue was discovered in Microvirt MEmu all versions prior to 7.0.2. This program opens TCP port 21509, presumably to receive installation-related commands from the host OS. Because everything after the installer:uninstall command is concatenated directly into a system() call, it is possible to execute arbitrary commands by supplying shell metacharacters.
Affected Applications
MEmu