CVE-2020-36642

🗓️ 06 Jan 2023 10:28:44Reported by VulDBType

CVE-2020-36642: Critical command injection vulnerability in trampgeek job

Reporter	Title	Published	Views	Family All 8
CNNVD	JOBE 命令注入漏洞	6 Jan 202300:00	–	cnnvd
Cvelist	CVE-2020-36642 trampgeek jobe LanguageTask.php run_in_sandbox command injection	6 Jan 202310:28	–	cvelist
EUVD	EUVD-2020-24094	7 Oct 202500:30	–	euvd
NVD	CVE-2020-36642	6 Jan 202311:15	–	nvd
Prion	Command injection	6 Jan 202311:15	–	prion
Positive Technologies	PT-2023-11812 · Unknown +1 · Trampgeek Jobe +1	6 Jan 202300:00	–	ptsecurity
RedhatCVE	CVE-2020-36642	22 May 202517:37	–	redhatcve
Vulnrichment	CVE-2020-36642 trampgeek jobe LanguageTask.php run_in_sandbox command injection	6 Jan 202310:28	–	vulnrichment

NVD

Vulners

Node

jobe_project jobeRange<1.7.0

[
  {
    "vendor": "trampgeek",
    "product": "jobe",
    "versions": [
      {
        "version": "1.0",
        "status": "affected"
      },
      {
        "version": "1.1",
        "status": "affected"
      },
      {
        "version": "1.2",
        "status": "affected"
      },
      {
        "version": "1.3",
        "status": "affected"
      },
      {
        "version": "1.4",
        "status": "affected"
      },
      {
        "version": "1.5",
        "status": "affected"
      },
      {
        "version": "1.6",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/trampgeek/jobe/releases/tag/v1.7.0
github	www.github.com/trampgeek/jobe/commit/8f43daf50c943b98eaf0c542da901a4a16e85b02
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
github	www.github.com/trampgeek/jobe/issues/39

21 Nov 2024 05:29Current

8.1High risk

Vulners AI Score8.1

CVSS 3.15.5 - 9.8

CVSS 25.2

CVSS 35.5

EPSS0.03686

SSVC

CWE-77