CVE-2017-2099

MEDIUM

AppGoat <V3.0.0 - RCE

Title source: llm

Description

Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.0 and earlier allows remote code execution via unspecified vectors.

References (2)

Scores

CVSS v3 6.3
EPSS 0.0044
EPSS Percentile 63.0%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

Classification

Status published

Affected Products (2)

ipa/appgoat < 3.0.0
INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA)/Hands-on Vulnerability Learning Tool "AppGoat" for Web Application < V3.0.0 and earlier

Timeline

Published Apr 28, 2017
Tracked Since Feb 18, 2026