SSD Advisory – KerioControl Remote Code Execution
Summary KerioControl suffers from a tar.gz path traversal within the import configuration functionality inside the admin panel which leads to Remote Code Execution. Credit Simon Janz Affected Devices KerioControl version 9.4.2 patch 1 build7290 Vendor Response The vendor has been notified on February 14, 2023, but has provided no indication whether or not it is …
SSD Advisory – KerioControl Remote Code Execution Read More »
