A vulnerability has been found in Actual Analyzer up to 2014-08-29 and classified as critical. This vulnerability affects unknown code. The manipulation of the argument ant leads to os command injection.
This vulnerability was named CVE-2014-5470. The attack can only be initiated within the local network. Furthermore, there is an exploit available.