CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2008-3882

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0920%
EPSS Percentile7.14th
Published2008年9月2日
Last Modified2026年4月23日

Vulnerability Description

Unspecified "Command Injection" vulnerability in ZoneMinder 1.23.3 and earlier allows remote attackers to execute arbitrary commands via (1) the executeFilter function in zm_html_view_events.php and (2) the run_state parameter to zm_html_view_state.php.

Affected Platforms (CPE)

📦
Zoneminder

Zoneminder

<= 1.23.3
📦
Zoneminder

Zoneminder

= 0.0.1
📦
Zoneminder

Zoneminder

= 0.9.7
📦
Zoneminder

Zoneminder

= 0.9.8
📦
Zoneminder

Zoneminder

= 0.9.9
📦
Zoneminder

Zoneminder

= 0.9.10
📦
Zoneminder

Zoneminder

= 0.9.11
📦
Zoneminder

Zoneminder

= 0.9.12
📦
Zoneminder

Zoneminder

= 0.9.13
📦
Zoneminder

Zoneminder

= 0.9.14
📦
Zoneminder

Zoneminder

= 0.9.15
📦
Zoneminder

Zoneminder

= 0.9.16
📦
Zoneminder

Zoneminder

= 1.17.0
📦
Zoneminder

Zoneminder

= 1.17.1
📦
Zoneminder

Zoneminder

= 1.17.2
📦
Zoneminder

Zoneminder

= 1.18.0
📦
Zoneminder

Zoneminder

= 1.18.1
📦
Zoneminder

Zoneminder

= 1.19.0
📦
Zoneminder

Zoneminder

= 1.19.1
📦
Zoneminder

Zoneminder

= 1.19.2
📦
Zoneminder

Zoneminder

= 1.19.3
📦
Zoneminder

Zoneminder

= 1.19.4
📦
Zoneminder

Zoneminder

= 1.19.5
📦
Zoneminder

Zoneminder

= 1.20.0
📦
Zoneminder

Zoneminder

= 1.20.1
📦
Zoneminder

Zoneminder

= 1.21.0
📦
Zoneminder

Zoneminder

= 1.21.1
📦
Zoneminder

Zoneminder

= 1.21.2
📦
Zoneminder

Zoneminder

= 1.21.3
📦
Zoneminder

Zoneminder

= 1.21.4
📦
Zoneminder

Zoneminder

= 1.22.0
📦
Zoneminder

Zoneminder

= 1.22.1
📦
Zoneminder

Zoneminder

= 1.22.2
📦
Zoneminder

Zoneminder

= 1.22.3
📦
Zoneminder

Zoneminder

= 1.23.0
📦
Zoneminder

Zoneminder

= 1.23.1
📦
Zoneminder

Zoneminder

= 1.23.2

References & Advisories

🔗 http://secunia.com/advisories/31636
🔗 http://www.securityfocus.com/archive/1/495745/100/0/threaded
🔗 http://www.securityfocus.com/bid/30843
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/44728
🔗 http://secunia.com/advisories/31636
🔗 http://www.securityfocus.com/archive/1/495745/100/0/threaded
🔗 http://www.securityfocus.com/bid/30843
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/44728

相關漏洞威脅

CVE-2019-69919.8

A classic Stack-based buffer overflow exists in the zmLoadUser() function in zm_user.cpp of the zmu binary in ZoneMinder through 1...

CVE-2018-10008329.8

ZoneMinder version <= 1.32.2 contains a Other/Unknown vulnerability in User-controlled parameter that can result in Disclosure of ...

CVE-2018-10008339.8

ZoneMinder version <= 1.32.2 contains a Other/Unknown vulnerability in User-controlled parameter that can result in Disclosure of ...

CVE-2019-84239.8

ZoneMinder through 1.32.3 has SQL Injection via the skins/classic/views/events.php filter[Query][terms][0][cnj] parameter.