1 results (0.003 seconds)
CVSS: 9.0EPSS: 0%CPEs: 4EXPL: 0
CVSS: 9.0EPSS: 0%CPEs: 4EXPL: 0CVE-2024-22443
https://notcve.org/view.php?id=CVE-2024-22443
24 Jul 2024 — A vulnerability in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to conduct a server-side prototype pollution attack. Successful exploitation of this vulnerability could allow an attacker to execute arbitrary commands on the underlying operating system leading to complete system compromise. • https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04672en_us&docLocale=en_US • CWE-1321: Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') •