Vulnerabilities* in ActADUR local server product, developed and maintained by ProTNS, allows Remote Code Inclusion on host systems.
Improper Neutralization of Special Elements used in a Command ('Command Injection')
The vulnerability has been rated as critical.This issue affects ActADUR: from v2.0.1.9 before v2.0.2.0., hence updating to version v2.0.2.0. or above is required.
Exploitability
AV:AAC:LAT:NPR:NUI:NVulnerable System
VC:HVI:HVA:LSubsequent System
SC:HSI:HSA:L9.4/CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:L/SC:H/SI:H/SA:LAuthentication
Input Validation