CVE-2020-12620

Publication date

2020-07-30 13:03:37

Family

mitre

State

PUBLISHED

Description

Pi-hole 4.4 allows a user able to write to /etc/pihole/dns-servers.conf to escalate privileges through command injection (shell metacharacters after an IP address).