Vulnerability — CVE-2022-40870

CVE-2022-40870

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2022-40870
Description:: The Web Client of Parallels Remote Application Server v18.0 is vulnerable to Host Header Injection attacks. This vulnerability allows attackers to execute arbitrary commands via a crafted payload injected into the Host header.
Last updated date:: 11/26/2022

Type:: exploit
Confidence:: HIGH
Date of publishing:: 11/26/2022
Reference url to background: https://github.com/IthacaLabs/Parallels/blob/main/ParallelsRemoteApplicationServer/HHI_CVE-2022-40870.txt

Type:: exploit
Confidence:: HIGH
Date of publishing:: 11/26/2022
Reference url to background: https://github.com/IthacaLabs/Parallels/tree/main/ParallelsRemoteApplicationServer