CVE-2017-2866

An exploitable vulnerability exists in the /api/CONFIG/backup functionality of Circle with Disney. Specially crafted network packets can cause an OS command injection. An attacker can send an HTTP request to trigger this vulnerability.

Date published : 2017-11-07

https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0372