nuclei-templates/cves/2020/CVE-2020-8654.yaml

48 lines
1.4 KiB
YAML

id: CVE-2020-8654
info:
name: EyesOfNetwork 5.3 - Authenticated RCE
author: praetorian-thendrickson
severity: high
description: EyesOfNetwork version 5.1-5.3 is vulnerable to multiple exploits. Version 5.3 is vulnerable to CVE-2020-8654 (authenticated rce), CVE-2020-8655 (privesc), CVE-2020-8656 (SQLi - API version before 2.4.2), and 2020-8657 (hardcoded api key). Versions 5.1-5.3 are vulnerable to CVE-2020-9465 (SQLi).
reference:
- https://github.com/h4knet/eonrce
- https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/eyesofnetwork_autodiscovery_rce.rb
- https://nvd.nist.gov/vuln/detail/CVE-2020-8657
- https://github.com/EyesOfNetworkCommunity/eonweb/issues/50
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
cvss-score: 8.8
cve-id: CVE-2020-8654
cwe-id: CWE-78
tags: cisa,eyesofnetwork,rce,authenticated,msf,cve,cve2020
requests:
- method: GET
path:
- "{{BaseURL}}/css/eonweb.css"
extractors:
- type: regex
name: version
internal: true
part: body
group: 1
regex:
- '# VERSION : ([0-9.]+)'
matchers-condition: and
matchers:
- type: dsl
dsl:
- compare_versions(version, '< 5.4', '>= 5.1')
- type: word
part: body
words:
- "EyesOfNetwork"
- type: status
status:
- 200