CVE-2020-14971

Опубликовано: 23 июн. 2020

Источник: nvd

CVSS3: 7.8

CVSS2: 4.6

EPSS Низкий

Описание

Pi-hole through 5.0 allows code injection in piholedhcp (the Static DHCP Leases section) by modifying Teleporter backup files and then restoring them. This occurs in settings.php. To exploit this, an attacker would request a backup of limited files via teleporter.php. These are placed into a .tar.gz archive. The attacker then modifies the host parameter in dnsmasq.d files, and then compresses and uploads these files again.

Ссылки

https://blog.telspace.co.za/2020/06/pi-hole-code-injection-cve-2020-14971.html
Third Party Advisory
https://github.com/pi-hole/AdminLTE/commit/8f6e1365b6dec0ae1aa0b0b15b102c9133f347e5
Patch
Third Party Advisory
https://github.com/pi-hole/AdminLTE/commit/c949516ee15fa6a9b0c8511cc4c4d6b0893f3e69
Patch
Third Party Advisory
https://github.com/pi-hole/AdminLTE/pull/1443
Third Party Advisory
https://blog.telspace.co.za/2020/06/pi-hole-code-injection-cve-2020-14971.html
Third Party Advisory
https://github.com/pi-hole/AdminLTE/commit/8f6e1365b6dec0ae1aa0b0b15b102c9133f347e5
Patch
Third Party Advisory
https://github.com/pi-hole/AdminLTE/commit/c949516ee15fa6a9b0c8511cc4c4d6b0893f3e69
Patch
Third Party Advisory
https://github.com/pi-hole/AdminLTE/pull/1443
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:pi-hole:pi-hole:*:*:*:*:*:*:*:*

Версия до 5.0 (включая)

EPSS

Процентиль: 21%

0.00067

Низкий

7.8 High

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-862

Связанные уязвимости

GHSA-wjqw-p6cv-p8gj

github

больше 3 лет назад