All intelligence
// vulnerability record
cached · NVD via COSMOS syncCVE-2022-44877
NONEKEVpublish date unavailable
CVSS / 10
// description
CWP Control Web Panel (formerly CentOS Web Panel) contains an OS command injection vulnerability that allows remote attackers to execute commands via shell metacharacters in the login parameter.
// required action (CISA KEV)
Apply updates per vendor instructions.
added 2023-01-17 00:00 UTC