PT-2020-20188 · Artica · Pandora Fms

Published

2020-03-23

Updated

2020-03-25

CVE-2020-8511

CVSS v3.1

7.2

High

Vector

AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

In Artica Pandora FMS through 7.42, Web Admin users can execute arbitrary code by uploading a .php file via the File Repository component, a different issue than CVE-2020-7935 and CVE-2020-8500.

Exploit

Fix

Unrestricted File Upload

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-434

Related Identifiers

CVE-2020-8511

Affected Products

Pandora Fms

PT-2020-20188 · Artica · Pandora Fms

CVE-2020-8511

Weakness Enumeration

Related Identifiers

Affected Products

References · 4