Skip to main content

Chef Manage

2 CVEs product

Monthly

CVE-2017-7174 CRITICAL Act Now

The user-account creation feature in Chef Manage 2.1.0 through 2.4.4 allows remote attackers to execute arbitrary code. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Chef Manage
NVD
CVSS 3.0
9.8
EPSS
2.0%
CVE-2016-4326 CRITICAL Act Now

The Chef Manage (formerly opscode-manage) add-on before 1.12.0 for Chef allows remote attackers to execute arbitrary code via crafted serialized data in a cookie. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Chef Manage
NVD
CVSS 3.0
9.8
EPSS
3.2%
EPSS 2% CVSS 9.8
CRITICAL Act Now

The user-account creation feature in Chef Manage 2.1.0 through 2.4.4 allows remote attackers to execute arbitrary code. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Chef Manage
NVD
EPSS 3% CVSS 9.8
CRITICAL Act Now

The Chef Manage (formerly opscode-manage) add-on before 1.12.0 for Chef allows remote attackers to execute arbitrary code via crafted serialized data in a cookie. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Chef Manage
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy