Lucene search
MitreCVE-2020-22755HistoryMay 08, 2023 - 2:15 p.m.
CVE-2020-22755
2023-05-0814:15:10
CWE-434
mitre
web.nvd.nist.gov
21
cve-2020-22755
mcms 5.0
file upload vulnerability
code execution
crafted thumbnail
nvd
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
9.2
Confidence
High
EPSS
0.002
Percentile
64.8%
File upload vulnerability in MCMS 5.0 allows attackers to execute arbitrary code via a crafted thumbnail. A different vulnerability than CVE-2022-31943.
Affected configurations
Node
mingsoftmcmsMatch5.0
Related
prion
prion
Unrestricted file upload
2023-05-08 14:15:00
Privilege escalation
2022-07-01 21:15:00
nvd
nvd
CVE-2020-22755
2023-05-08 14:15:10
CVE-2022-31943
2022-07-01 21:15:08
osv
osv
MCMS vulnerable to arbitrary code execution via crafted thumbnail
2023-05-08 15:30:18
Unrestricted Upload of File with Dangerous Type in MCMS
2022-07-02 00:00:19
github
github
MCMS vulnerable to arbitrary code execution via crafted thumbnail
2023-05-08 15:30:18
Unrestricted Upload of File with Dangerous Type in MCMS
2022-07-02 00:00:19
cvelist
cvelist
CVE-2020-22755
2023-05-08 00:00:00
CVE-2022-31943
2022-07-01 20:10:39
cve
cve
CVE-2022-31943
2022-07-01 21:15:08
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
9.2
Confidence
High
EPSS
0.002
Percentile
64.8%
Related for CVE-2020-22755