ID CVE-2020-1956
Summary Kylin has some restful apis which will concatenate os command with the user input string, a user is likely to be able to execute any os command without any protection or validation.
References
Vulnerable Configurations
CVSS
Base: 5.0
Impact:
Exploitability:
Access
VectorComplexityAuthentication
Impact
ConfidentialityIntegrityAvailability
Last major update 22-05-2020 - 15:01
Published 22-05-2020 - 14:15
Last modified 22-05-2020 - 15:01
Back to Top