Security Advisory

CVE-2020-16152

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-11-14 20:08:26

Last updated 2024-08-04 13:37:54

Assigner mitre

State PUBLISHED

Description

The NetConfig UI administrative interface in Extreme Networks ExtremeWireless Aerohive HiveOS and IQ Engine through 10.0r8a allows attackers to execute PHP code as the root user via remote HTTP requests that insert this code into a log file and then traverse to that file.

← Browse all CVEs View on cve.org ↗