|Max CVSS||8.5||Min CVSS||4.9||Total Count||2|
|ID||CVSS||Summary||Last (major) update||Published|
The pcsd web UI in PCS 0.9.139 and earlier allows remote authenticated users to execute arbitrary commands via "escape characters" in a URL.
|04-09-2015 - 15:49||03-09-2015 - 14:59|
Race condition in pcsd in PCS 0.9.139 and earlier uses a global variable to validate usernames, which allows remote authenticated users to gain privileges by sending a command that is checked for security after another user is authenticated.
|04-09-2015 - 15:48||03-09-2015 - 14:59|