PT-2020-21390 — Remote Code Execution in Unknown Pomelo-Monitor

PT-2020-21390 · Unknown · Pomelo-Monitor

Published

2020-09-02

Updated

2020-09-02

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions pomelo-monitor versions all

Description The issue is related to insufficient input validation, which allows an attacker to run arbitrary commands on the server, thus making it vulnerable to Remote Code Execution.

Recommendations For all versions, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

GHSA-M5CH-GX8G-RG73

Affected Products

Pomelo-Monitor

PT-2020-21390 · Unknown · Pomelo-Monitor

Weakness Enumeration

Related Identifiers

Affected Products

References · 2