Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2020-15415
HistoryJun 30, 2020 - 1:37 p.m.

CVE-2020-15415

2020-06-3013:37:56
mitre
www.cve.org
4

AI Score

9.7

Confidence

High

EPSS

0.943

Percentile

99.3%

JSON

On DrayTek Vigor3900, Vigor2960, and Vigor300B devices before 1.5.1, cgi-bin/mainfunction.cgi/cvmcfgupload allows remote command execution via shell metacharacters in a filename when the text/x-python-script content type is used, a different issue than CVE-2020-14472.

Related

attackerkb 1
cve 2
prion 2
nvd 2
checkpoint_advisories 2
cvelist 1
cisa_kev 1
attackerkb
attackerkb
CVE-2020-15415
2020-06-30 00:00:00
cve
cve
CVE-2020-15415
2020-06-30 14:15:11
CVE-2020-14472
2020-06-24 17:15:11
prion
prion
Design/Logic Flaw
2020-06-30 14:15:00
Command injection
2020-06-24 17:15:00
nvd
nvd
CVE-2020-15415
2020-06-30 14:15:11
CVE-2020-14472
2020-06-24 17:15:11
checkpoint_advisories
checkpoint_advisories
DrayTek Vigor Remote Code Execution (CVE-2020-14472)
2020-07-08 00:00:00
DrayTek Command Injection (CVE-2020-15415)
2020-07-12 00:00:00
cvelist
cvelist
CVE-2020-14472
2020-06-24 16:51:23
cisa_kev
cisa_kev
DrayTek Multiple Vigor Routers OS Command Injection Vulnerability
2024-09-30 00:00:00

AI Score

9.7

Confidence

High

EPSS

0.943

Percentile

99.3%

JSON
Related for CVELIST:CVE-2020-15415
attackerkb1cve2prion2nvd2checkpoint_advisories2cvelist1cisa_kev1