CVE-2018-14772

Source
https://cve.org/CVERecord?id=CVE-2018-14772
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-14772.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2018-14772
Published
2018-10-16T22:29:01.603Z
Modified
2026-07-08T19:43:51.215139Z
Severity
  • 7.2 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

Pydio 4.2.1 through 8.2.1 has an authenticated remote code execution vulnerability in which an attacker with administrator access to the web application can execute arbitrary code on the underlying system via Command Injection.

References

Affected packages

Git / github.com/pydio/pydio-core

Affected ranges

Type
GIT
Repo
https://github.com/pydio/pydio-core
Events
Database specific
{
    "cpe": "cpe:2.3:a:pydio:pydio:*:*:*:*:*:*:*:*",
    "extracted_events": [
        {
            "introduced": "4.2.1"
        },
        {
            "last_affected": "8.2.1"
        }
    ],
    "source": "CPE_RANGE"
}

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-14772.json"