Vulnerability Details CVE-2020-11941
An issue was discovered in Open-AudIT 3.2.2. There is OS Command injection in Discovery.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.04
EPSS Ranking 87.8%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.5
References
- http://packetstormsecurity.com/files/157476/Open-AudIT-3.2.2-Command-Injection-SQL-Injection.html
- https://community.opmantek.com/display/OA/Release+Notes+for+Open-AudIT+v3.3.0
- https://www.coresecurity.com/advisories/open-audit-multiple-vulnerabilities
- http://packetstormsecurity.com/files/157476/Open-AudIT-3.2.2-Command-Injection-SQL-Injection.html
- https://community.opmantek.com/display/OA/Release+Notes+for+Open-AudIT+v3.3.0
- https://www.coresecurity.com/advisories/open-audit-multiple-vulnerabilities
Products affected by CVE-2020-11941
-
cpe:2.3:a:opmantek:open-audit:3.2.2