Hi all,
I suspect you are all well aware of the Metasploit in below link:
https://www.exploit-db.com/exploits/40404/
We have looked into this and we came to the conclusion that to be able to use this exploit a hacker would need both root access and localhost acces to even be able to start exploiting the above linked exploit. But is this conclusion valid?
We are running a Kaltura version that is not upgradable to the newest version hence are trying to do a risk assessment on what the actual risk is. So far it seems like one would need alot more then just kaltura access to use this exploit am I right?
Kind regards,
Ken den Dooop