CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-6142

A remote code execution vulnerability exists in the Modules.php functionality of OS4Ed openSIS 7.3. A specially crafted HTTP request can cause local file inclusion. An attacker can send an HTTP request to trigger this vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.323

EPSS Ranking 96.6%

CVSS Severity

CVSS v3 Score 9.9

CVSS v2 Score 7.5

References

https://talosintelligence.com/vulnerability_reports/TALOS-2020-1082
https://talosintelligence.com/vulnerability_reports/TALOS-2020-1082

Products affected by CVE-2020-6142

Os4ed » Opensis » Version: 7.3

cpe:2.3:a:os4ed:opensis:7.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-6142

Products

Pricing

Contact Us