CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-15362

wifiscanner.js in thingsSDK WiFi Scanner 1.0.1 allows Code Injection because it can be used with options to overwrite the default executable/binary path and its arguments. An attacker can abuse this functionality to execute arbitrary code.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.012

EPSS Ranking 78.0%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

https://github.com/thingsSDK/wifiscanner/issues/1
https://github.com/thingsSDK/wifiscanner/issues/1

Products affected by CVE-2020-15362

Thingssdk » Wifiscanner » Version: 1.0.1

cpe:2.3:a:thingssdk:wifiscanner:1.0.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-15362

Products

Pricing

Contact Us