Lucene search
+L

4 matches found

Circl
Circl
added 2023/02/19 12:43 p.m.10 views

CVE-2020-15415

creationtimestamp| type| source ---|---|--- 2023-02-19 12:43:33+00:00| published-proof-of-concept| https://t.me/JerusalemElectronicArmy/179 2024-09-30 18:10:03+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2025-02-23 02:10:59+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123...

9.8CVSS6.8AI score0.84203EPSS
In wildExploits1References6
VulnCheck KEV
VulnCheck KEV
added 2023/02/15 12:0 a.m.3 views

VulnCheck KEV: CVE-2020-15415

DrayTek Vigor3900, Vigor2960, and Vigor300B devices contain an OS command injection vulnerability in cgi-bin/mainfunction.cgi/cvmcfgupload that allows for remote code execution via shell metacharacters in a filename when the text/x-python-script content type is used...

9.8CVSS7.5AI score0.84203EPSS
Exploits1References1
Check Point Advisories
Check Point Advisories
added 2020/07/12 12:0 a.m.25 views

DrayTek Command Injection (CVE-2020-15415)

A command injection vulnerability exists in DrayTek. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS5.9AI score0.84203EPSS
Exploits1
CVE
CVE
added 2020/06/30 1:37 p.m.241 views

CVE-2020-15415

DrayTek Vigor3900, Vigor2960, and Vigor300B devices before 1.5.1 are affected by CVE-2020-15415. The issue is an OS command injection in /cgi-bin/mainfunction.cgi/cvmcfgupload that allows remote code execution via shell metacharacters in a filename when the request uses content type text/x-python...

9.8CVSS9.5AI score0.84203EPSS
In wildExploits1References3Affected Software1
Rows per page
Query Builder