CVE-2020-8655

🗓️ 06 Feb 2020 23:58:09Reported by mitreType

cve🔗 web.nvd.nist.gov👁 1145 Views🌐 WEB

An issue in EyesOfNetwork 5.3 allows apache user to escalate privileges via crafted NSE script for nmap 7

Reporter	Title	Published	Views	Family All 25
0day.today	EyesOfNetwork 5.3 Remote Code Execution Exploit	7 Feb 202000:00	–	zdt
0day.today	EyesOfNetwork AutoDiscovery Target Command Execution Exploit	4 Mar 202000:00	–	zdt
Gitee	Exploit for OS Command Injection in Eyesofnetwork	2 Oct 202114:45	–	gitee
ATTACKERKB	CVE-2020-8655	7 Feb 202000:00	–	attackerkb
BDU FSTEC	The vulnerability of the /etc/sudoers component of the EyesOfNetwork (EON) monitoring software for systems and networks allows a perpetrator to escalate their privileges and execute arbitrary commands.	1 Dec 202100:00	–	bdu_fstec
Circl	CVE-2020-8655	2 Mar 202021:31	–	circl
CISA KEV Catalog	EyesOfNetwork Improper Privilege Management Vulnerability	3 Nov 202100:00	–	cisa_kev
Check Point Advisories	EyesOfNetwork Remote Code Execution (CVE-2020-8655)	18 Nov 202000:00	–	checkpoint_advisories
Check Point Advisories	SQL Injection Over HTTP Traffic (CVE-2020-11530; CVE-2020-17463; CVE-2020-17506; CVE-2020-25990; CVE-2020-27481; CVE-2020-5766; CVE-2020-8655; CVE-2020-8656; CVE-2020-9465)	18 Nov 202000:00	–	checkpoint_advisories
Cvelist	CVE-2020-8655	6 Feb 202023:58	–	cvelist

NVD

Node

eyesofnetwork eyesofnetworkMatch5.3-0

Source	Link
packetstormsecurity	www.packetstormsecurity.com/files/156605/EyesOfNetwork-AutoDiscovery-Target-Command-Execution.html
packetstormsecurity	www.packetstormsecurity.com/files/156266/EyesOfNetwork-5.3-Remote-Code-Execution.html
github	www.github.com/EyesOfNetworkCommunity/eonconf/issues/8
cisa	www.cisa.gov/known-exploited-vulnerabilities-catalog

Parameter	Position	Path	Description	CWE
username	query param	/eonapi/getApiKey	SQLi path to obtain admin API key via crafted username/password parameters in getApiKey endpoint.	CWE-269
password	query param	/eonapi/getApiKey	SQLi path to obtain admin API key via crafted username/password parameters in getApiKey endpoint.	CWE-269
user_name	request body	/eonapi/createEonUser	API call to create a new EON user; potential misuse for privilege escalation via crafted user creation.	CWE-269
user_group	request body	/eonapi/createEonUser	API call to create a new EON user; potential misuse for privilege escalation via crafted user creation.	CWE-269
user_password	request body	/eonapi/createEonUser	API call to create a new EON user; potential misuse for privilege escalation via crafted user creation.	CWE-269
user_name	request body	/eonapi/deleteEonUser	API call to delete a created EON user; used in exploit flow to cleanup after privilege escalation.	CWE-269
login	request body	/login.php	Authentication endpoint used in exploit to obtain session and cookies for further actions.	CWE-269
mdp	request body	/login.php	Authentication endpoint used in exploit to obtain session and cookies for further actions.	CWE-269
request	request body	/lilac/autodiscovery.php	AutoDiscovery feature endpoint where a crafted target parameter can trigger command execution via a composed NSE payload.	CWE-269
job_name	request body	/lilac/autodiscovery.php	AutoDiscovery feature endpoint where a crafted target parameter can trigger command execution via a composed NSE payload.	CWE-269

17 Jun 2026 03:26Current

7.8High risk

Vulners AI Score7.8

CVSS 3.17.8

CVSS 29.3

EPSS0.58076

SSVC