Auto Generated CVE annotations [Tue Apr 19 21:56:21 UTC 2022] 🤖

patch-1
GitHub Action 2022-04-19 21:56:21 +00:00
parent 829b8bdf4d
commit 775b18dfb2
1 changed files with 6 additions and 0 deletions

View File

@ -9,6 +9,12 @@ info:
metadata: metadata:
shodan-query: http.title:"Intellian Aptus Web" shodan-query: http.title:"Intellian Aptus Web"
tags: satellian,rce,cve,cve2020,intellian,aptus tags: satellian,rce,cve,cve2020,intellian,aptus
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.80
cve-id: CVE-2020-7980
cwe-id: CWE-78
description: "Intellian Aptus Web 1.24 allows remote attackers to execute arbitrary OS commands via the Q field within JSON data to the cgi-bin/libagent.cgi URI. NOTE: a valid sid cookie for a login to the intellian default account might be needed."
requests: requests:
- raw: - raw: