OrientDB Remote Command Execution Exploit

This module exploits a privilege escalation vulnerability in OrientDB by abusing SQL queries on OUser/ORole without the privileges which allows users to get Code Execution.
Platform: 
Vulnerabilty ID: 
CVE-2017-11467
Product Version: 
2017_R2
Released Date: 
Wednesday, August 30, 2017 - 00:00