HGiga iSherlock contains an unauthenticated local OS command injection vulnerability. Attackers can inject arbitrary malicious operating system commands that execute on the target server with the privileges of the running iSherlock process. Successful exploitation leads to full compromise of the affected system.
Remediation
Apply the latest official security patch from HGiga to affected iSherlock installations as soon as possible. Restrict local access to affected systems until patching is completed to reduce attack exposure.
TopVuln sends digest emails with high-risk CVE picks across multiple authoritative sources—curated with EPSS and AI. Choose daily per-stream emails and optional weekly or monthly roundups.