PT-2020-13364 · Artica · Artica Proxy

Published

2020-06-22

Updated

2020-07-01

CVE-2020-13159

CVSS v3.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Artica Proxy versions prior to 4.30.000000 Community Edition

Description The issue allows OS command injection through specific fields, including the Netbios name, Server domain name, dhclient mac, Hostname, or Alias field.

Recommendations For versions prior to 4.30.000000 Community Edition, update to version 4.30.000000 or later to resolve the issue.

Exploit

Fix

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-78

Related Identifiers

CVE-2020-13159

Affected Products

Artica Proxy

PT-2020-13364 · Artica · Artica Proxy

CVE-2020-13159

Weakness Enumeration

Related Identifiers

Affected Products

References · 5