Security Advisory

CVE-2020-8654

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-02-06 23:55:10

Last updated 2024-08-04 10:03:46

Assigner mitre

State PUBLISHED

Description

An issue was discovered in EyesOfNetwork 5.3. An authenticated web user with sufficient privileges could abuse the AutoDiscovery module to run arbitrary OS commands via the /module/module_frame/index.php autodiscovery.php target field.

← Browse all CVEs View on cve.org ↗