18 matches found
CVE-2020-7980
Intellian Aptus Web 1.24 allows remote attackers to execute arbitrary OS commands via the Q field within JSON data to the cgi-bin/libagent.cgi URI. NOTE: a valid sid cookie for a login to the intellian default account might be needed...
EUVD-2020-28913
Malware in sbrugna...
CVE-2020-8000
Intellian Aptus Web 1.24 has a hardcoded password of 12345678 for the intellian account...
VulnCheck KEV: CVE-2020-7980
Intellian Aptus Web 1.24 allows remote attackers to execute arbitrary OS commands via the Q field within JSON data to the cgi-bin/libagent.cgi URI. NOTE: a valid sid cookie for a login to the intellian default account might be needed...
Exploit for OS Command Injection in Intelliantech Aptus_Web
It is a PoC exploit for CVE-2020-7980, a remote code execution vulnerability in Intellian Satellite controller Intellian Aptus Web. The exploit targets the vulnerability class/vector of RCE Remote Code Execution and is implemented as a Python script named satellian.py. The probable entry point is...
Intellian Aptus Web Remote Code Execution (CVE-2020-7980)
A remote code execution vulnerability exists in Intellian Aptus Web. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Intellian Satellian Aptus Web Console Remote Code Execution Vulnerability
Intellian Satellian Aptus Web is a console system. A remote code execution vulnerability exists in the Intellian Satellian Aptus Web console. An attacker can execute arbitrary code on the target system by sending a malicious construct request to /cgi-bin/libagent.cgi using the Q field in the JSON...
Exploit for OS Command Injection in Intelliantech Aptus_Web
Satellian-CVE-2020-7980 Satellian is a PoC script that shows R...
CVE-2020-8000
Intellian Aptus Web 1.24 has a hardcoded password of 12345678 for the intellian account...
Hardcoded credentials
Intellian Aptus Web 1.24 has a hardcoded password of 12345678 for the intellian account...
CVE-2020-8000
Intellian Aptus Web 1.24 has a hardcoded password of 12345678 for the intellian account...
CVE-2020-8000
Intellian Aptus Web 1.24 contains a hardcoded intellian account password (12345678). This yields a high-severity, network-exposed risk with potential full impact on confidentiality, integrity, and availability per CVSS 3.1/BASE. The connected sources confirm the issue but do not provide remediati...
CVE-2020-7980
Intellian Aptus Web 1.24 allows remote attackers to execute arbitrary OS commands via the Q field within JSON data to the cgi-bin/libagent.cgi URI. NOTE: a valid sid cookie for a login to the intellian default account might be needed...
CVE-2020-7980
Intellian Aptus Web 1.24 allows remote attackers to execute arbitrary OS commands via the Q field within JSON data to the cgi-bin/libagent.cgi URI. NOTE: a valid sid cookie for a login to the intellian default account might be needed...
Design/Logic Flaw
Intellian Aptus Web 1.24 allows remote attackers to execute arbitrary OS commands via the Q field within JSON data to the cgi-bin/libagent.cgi URI. NOTE: a valid sid cookie for a login to the intellian default account might be needed...
CVE-2020-7980
Intellian Aptus Web 1.24 allows remote attackers to execute arbitrary OS commands via the Q field within JSON data to the cgi-bin/libagent.cgi URI. NOTE: a valid sid cookie for a login to the intellian default account might be needed...
CVE-2020-7980
CVE-2020-7980 affects Intellian Aptus Web 1.24). If upgrading, ensure the target version is updated to a non-vulnerable release per the sources. Exploitation details and PoCs exist in several repositories, including a PoC script demonstrating RCE and root-level commands. No additional exploit ve...
PT-2020-19895 · Intellian · Intellian Satellian +1
Name of the Vulnerable Software and Affected Versions: Intellian Aptus Web version 1.24 Intellian Satellian version 1.12 Description: The issue allows remote attackers to execute arbitrary OS commands via the Q field within JSON data to the "cgi-bin/libagent.cgi" URI. A valid sid cookie for a log...