CVE-2020-15568 in TerraMaster TOSthông tin

Tóm tắt

Bởi MITRE • 30/01/2021

TerraMaster TOS before 4.1.29 has Invalid Parameter Checking that leads to code injection as root. This is a dynamic class method invocation vulnerability in include/exportUser.php, in which an attacker can trigger a call to the exec method with (for example) OS commands in the opt parameter.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Đặt trước

06/07/2020

Tiết lộ

30/01/2021

Kiểm duyệt

được chấp nhận

EPSS

0.28495

KEV

không

Các hoạt động

rất thấp

Nguồn

Do you know our Splunk app?

Download it now for free!