exacqVision Web Service - Remote Code Execution (CVE-2020-9047)

exacqVision Web Service is susceptible to remote code execution which could allow the execution of unauthorized code or operating system commands on systems running exacqVision Web Service versions 20.06.3.0 and prior and exacqVision Enterprise Manager versions 20.06.4.0 and prior. An attacker with administrative privileges could potentiallydownload and run a malicious executable that could allow OS command injection on the system.

exacqVision网络服务易受远程代码执行漏洞影响，该漏洞可能允许攻击者在运行exacqVision网络服务版本20.06.3.0及以下版本或exacqVision企业管理器版本20.06.4.0及以下版本的系统上执行未经授权的代码或操作系统命令。具有管理员权限的攻击者可能下载并运行恶意可执行文件，从而允许在系统上执行操作系统命令注入。