exploitDog

CVE-2020-16279

Опубликовано: 20 авг. 2020

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

The Kommbox component in Rangee GmbH RangeeOS 8.0.4 is vulnerable to Remote Code Execution due to untrusted user supplied input being passed to the command line without sanitization.

Ссылки

https://www.contextis.com/en/resources/advisories/cve-2020-16279
Third Party Advisory
https://www.contextis.com/en/resources/advisories/cve-2020-16279
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:rangee:rangeeos:8.0.4:*:*:*:*:*:*:*

EPSS

Процентиль: 85%

0.02515

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-78

Связанные уязвимости

GHSA-2gfg-vm36-6mvj

github

больше 3 лет назад

The Kommbox component in Rangee GmbH RangeeOS 8.0.4 is vulnerable to Remote Code Execution due to untrusted user supplied input being passed to the command line without sanitization.

EPSS

Процентиль: 85%

0.02515

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-78