Lucene search
MitreCVELIST:CVE-2020-14293HistoryOct 02, 2020 - 8:14 a.m.
CVE-2020-14293
2020-10-0208:14:49
mitre
www.cve.org
1
secudos
domos
vulnerability
conf_datetime
remote attackers
arbitrary commands
shell metacharacters
zone field
web interface
EPSS
0.03
Percentile
90.9%
conf_datetime in Secudos DOMOS 5.8 allows remote attackers to execute arbitrary commands as root via shell metacharacters in the zone field (obtained from the web interface).
References
seclists.org/fulldisclosure/2020/Sep/51
github.com/patrickhener/CVE-2020-14293
www.secudos.de/en/news-en/domos-release-5-9
www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2020-025.txt
www.syss.de/pentest-blog/syss-2020-024-und-syss-2020-025-zwei-schwachstellen-in-file-transfer-loesung-von-qiata
Related
packetstorm
packetstorm
DOMOS 5.8 Command Injection
2020-09-30 00:00:00
prion
prion
Design/Logic Flaw
2020-10-02 09:15:00
githubexploit
githubexploit
Exploit for OS Command Injection in Secudos Domos
2020-09-24 09:17:38
Exploit for Cross-site Scripting in Secudos Qiata Fta
2020-09-24 08:49:05
nvd
nvd
CVE-2020-14293
2020-10-02 09:15:13
cve
cve
CVE-2020-14293
2020-10-02 09:15:13