Vulnerability Details CVE-2020-8511
In Artica Pandora FMS through 7.42, Web Admin users can execute arbitrary code by uploading a .php file via the File Repository component, a different issue than CVE-2020-7935 and CVE-2020-8500.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.4%
CVSS Severity
CVSS v3 Score 7.2
CVSS v2 Score 6.5
Products affected by CVE-2020-8511
-
cpe:2.3:a:artica:pandora_fms:1.2
-
cpe:2.3:a:artica:pandora_fms:1.3
-
cpe:2.3:a:artica:pandora_fms:1.4
-
cpe:2.3:a:artica:pandora_fms:2.0
-
cpe:2.3:a:artica:pandora_fms:2.1
-
cpe:2.3:a:artica:pandora_fms:3.0
-
cpe:2.3:a:artica:pandora_fms:3.1
-
cpe:2.3:a:artica:pandora_fms:3.2
-
cpe:2.3:a:artica:pandora_fms:4.0
-
cpe:2.3:a:artica:pandora_fms:5.0
-
cpe:2.3:a:artica:pandora_fms:5.1
-
cpe:2.3:a:artica:pandora_fms:6.0
-
cpe:2.3:a:artica:pandora_fms:7.0
-
cpe:2.3:a:artica:pandora_fms:7.0_ng
-
cpe:2.3:a:artica:pandora_fms:7.42