CVE-2020-7856

Опубликовано: 20 апр. 2021

Источник: nvd

CVSS3: 7.5

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

A vulnerability of Helpcom could allow an unauthenticated attacker to execute arbitrary command. This vulnerability exists due to insufficient authentication validation.

Ссылки

https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=36003
Third Party Advisory
https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=36003
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:cnesty:helpcom:*:*:*:*:*:*:*:*

Версия до 11.2020 (исключая)

EPSS

Процентиль: 74%

0.00813

Низкий

7.5 High

CVSS3

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-287

Связанные уязвимости

GHSA-w9pp-r77p-j4p3

github

больше 3 лет назад

A vulnerability of Helpcom could allow an unauthenticated attacker to execute arbitrary command. This vulnerability exists due to insufficient authentication validation.

EPSS

Процентиль: 74%

0.00813

Низкий

7.5 High

CVSS3

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-287