Lucene search

K
cvelistMitreCVELIST:CVE-2020-8782
HistoryOct 06, 2020 - 1:54 p.m.

CVE-2020-8782 ALEOS LAN-Side RPC Service Remote Code Execution

2020-10-0613:54:53
mitre
www.cve.org
7
cve-2020-8782
aleos
lan-side rpc
remote code execution
unauthenticated
4.4.9
4.9.5
4.14.0

CVSS3

7.5

Attack Vector

ADJACENT

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.9

Confidence

High

EPSS

0.007

Percentile

79.8%

Unauthenticated RPC server on ALEOS before 4.4.9, 4.9.5, and 4.14.0 allows remote code execution.

CVSS3

7.5

Attack Vector

ADJACENT

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.9

Confidence

High

EPSS

0.007

Percentile

79.8%

Related for CVELIST:CVE-2020-8782