ZoneMinder.Language.Settings.Remote.Code.Execution
Description
This indicates an attack attempt to exploit an Remote Code Execution Vulnerability in ZoneMinder.
This vulnerability is due to an error when uploading a crafted files to the vulnerable server. A remote attacker could exploit this vulnerability by sending a crafted file to the target server. Successfully exploiting this vulnerability could result in remote code execution in the context of the target system.
Affected Products
ZoneMinder version before 1.36.13
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://forums.zoneminder.com/viewtopic.php?t=31638
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |