CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Webmin: >> Webmin >> 1.953 Security Vulnerabilities

CVE-2020-35606

Arbitrary command execution can occur in Webmin through 1.962. Any user authorized for the Package Updates module can execute arbitrary commands with root privileges via vectors involving %0A and %0C. NOTE: this issue exists because of an incomplete fix for CVE-2019-12840.

CVSS Score

8.8

EPSS Score

0.716

Published

2020-12-21

Page 2

Vulnerabilities

Vulnerable Software

Webmin: >> Webmin >> 1.953 Security Vulnerabilities

Products

Pricing

Contact Us