CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-36882

Flexsense DiskBoss 7.7.14 allows unauthenticated attackers to upload arbitrary files via /Command/Search Files/Directory field, leading to a denial of service by crashing the application.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 35.3%

CVSS Severity

CVSS v3 Score 7.5

References

https://github.com/x00x00x00x00/diskboss_7.7.14/raw/master/diskboss_setup_v7.7.14.exe
https://www.diskboss.com/
https://www.exploit-db.com/exploits/48276
https://www.vulncheck.com/advisories/flexsense-diskboss-denial-of-service-by-crashing-the-application

Products affected by CVE-2020-36882

Flexense » Diskboss » Version: 7.7.14

cpe:2.3:a:flexense:diskboss:7.7.14

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-36882

Products

Pricing

Contact Us