CVE-2018-10201

high-risk
Published 2018-04-20

An issue was discovered in NcMonitorServer.exe in NC Monitor Server in NComputing vSpace Pro 10 and 11. It is possible to read arbitrary files outside the root directory of the web server. This vulnerability could be exploited remotely by a crafted URL without credentials, with .../ or ...\ or ..../ or ....\ as a directory-traversal pattern to TCP port 8667.

Do I need to act?

!
81.4% chance of exploitation in next 30 days
EPSS score — higher than 19% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
!
1 public exploit available
44497
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.5/10 High
NETWORK / LOW complexity

Affected Products (2)

Affected Vendors

Ncomputing

References (8)

Exploit http://www.kwell.net/kwell_blog/?p=5199
https://support.ncomputing.com/portal/kb/articles/ncomputing-health-monitor-serv...
Exploit https://www.exploit-db.com/exploits/44497/
Third Party Advisory https://www.kwell.net/kwell/index.php?option=com_newsfeeds&view=newsfeed&id=15&I...
Exploit http://www.kwell.net/kwell_blog/?p=5199
https://support.ncomputing.com/portal/kb/articles/ncomputing-health-monitor-serv...
Exploit https://www.exploit-db.com/exploits/44497/
Third Party Advisory https://www.kwell.net/kwell/index.php?option=com_newsfeeds&view=newsfeed&id=15&I...
53
/ 100
high-risk
Severity 26/34 · High
Exploitability 20/34 · Moderate
Exposure 7/34 · Low