N/A

The API endpoints in Ironman PowerShell Universal 3.0.0 through 4.2.0 allow remote attackers to execute arbitrary commands via crafted HTTP requests if a param block is used, due to invalid sanitization of input strings. The fixed versions are 3.10.2, 4.1.10, and 4.2.1.

N/A

N/A

Ironman Software PowerShell Universal 安全漏洞

Ironman Software PowerShell Universal是Ironman Software公司的一个用于管理和委派对自动化环境的访问的单一窗格。 Ironman Software PowerShell Universal 3.0.0至4.2.0版本存在安全漏洞，该漏洞源于对输入字符串的过滤无效，导致攻击者可以利用API端点特制HTTP请求执行任意命令。

N/A

N/A