CVE-2020-13778

🗓️ 19 Oct 2020 13:13:15Reported by [email protected]Type

rConfig 3.9.4 Authenticated Code Execution via forged GET reques

Reporter	Title	Published	Views	Family All 5
Check Point Advisories	rConfig Remote Code Execution (CVE-2020-13778)	25 Nov 202000:00	–	checkpoint_advisories
CVE	CVE-2020-13778	19 Oct 202013:15	–	cve
Prion	Code injection	19 Oct 202013:15	–	prion
Cvelist	CVE-2020-13778	19 Oct 202012:54	–	cvelist
OpenVAS	rConfig < 3.9.5 Multiple Vulnerabilities	10 Mar 202000:00	–	openvas

Nvd

Node

rconfig rconfigRange≤3.9.4

Source	Link
theguly	www.theguly.github.io/2020/09/rconfig-3.9.4-multiple-vulnerabilities/
github	www.github.com/theguly/exploits/blob/master/CVE-2020-13778.py
cxsecurity	www.cxsecurity.com/issue/WLB-2020100091

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

19 Oct 2020 13:15Current

CVSS29

CVSS38.8

EPSS0.12938

CWE-78

rconfig security code-execution forged-request authenticated-ajax_php-system-commands