1. Home
  2. Mapping Frameworks
  3. CVE Home
  4. NUUO CMS

CVE CVE-2018-17934 Mappings

NUUO CMS All versions 3.3 and prior the application allows external input to construct a pathname that is able to be resolved outside the intended directory. This could allow an attacker to impersonate a legitimate user, obtain restricted information, or execute arbitrary code.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name
CVE-2018-17934 NUUO CMS secondary_impact T1036 Masquerading
CVE-2018-17934 NUUO CMS secondary_impact T1005 Data from Local System
CVE-2018-17934 NUUO CMS secondary_impact T1203 Exploitation for Client Execution
CVE-2018-17934 NUUO CMS exploitation_technique T1202 Indirect Command Execution