CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-19360

Local file inclusion in FHEM 6.0 allows in fhem/FileLog_logWrapper file parameter can allow an attacker to include a file, which can lead to sensitive information disclosure.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.871

EPSS Ranking 99.4%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://emreovunc.com/blog/en/FHEM-v6.0-LFI-Vulnerability-01.png
https://github.com/EmreOvunc/FHEM-6.0-Local-File-Inclusion-LFI-Vulnerability
https://emreovunc.com/blog/en/FHEM-v6.0-LFI-Vulnerability-01.png
https://github.com/EmreOvunc/FHEM-6.0-Local-File-Inclusion-LFI-Vulnerability

Products affected by CVE-2020-19360

Fhem » Fhem » Version: 6.0

cpe:2.3:a:fhem:fhem:6.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-19360

Products

Pricing

Contact Us