CVE-2018-18603 – 360 Total Security 3.5.0.1033 allows a Sandbox Escape via an "import os" stateme …

0

Vuln ID: CVE-2018-18603

Published:  2018-10-23  16:29:00Z

Description: 360 Total Security 3.5.0.1033 allows a Sandbox Escape via an "import os" statement, followed by os.system("CMD") or os.system("PowerShell"), within a .py file.

Source: NVD.NIST.GOV