Lucene search
Veracode Vulnerability DatabaseVERACODE:27615HistoryOct 19, 2020 - 5:34 a.m.
Arbitrary Code Execution
2020-10-1905:34:11
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
arbitrary code execution
blazar-dashboard
insecure usage
eval function
horizon host.
EPSS
0.002
Percentile
61.6%
blazar-dashboard is vulnerable to arbitrary code execution. An insecure usage of the eval function allows a user to execute arbitrary code on the Horizon host.
References
www.openwall.com/lists/oss-security/2020/10/16/5
github.com/openstack/blazar-dashboard/commit/33c58438abf8221291d264db26a061279d4f22c7
launchpad.net/bugs/1895688
review.opendev.org/755810
review.opendev.org/755812
review.opendev.org/755813
review.opendev.org/755814
review.opendev.org/756064
security.openstack.org/ossa/OSSA-2020-007.html
Related
prion
prion
Design/Logic Flaw
2020-10-16 06:15:00
github
github
Arbitrary Code Execution in blazar-dashboard
2020-10-27 17:55:04
nvd
nvd
CVE-2020-26943
2020-10-16 06:15:12
osv
osv
Arbitrary Code Execution in blazar-dashboard
2020-10-27 17:55:04
CVE-2020-26943
2020-10-16 06:15:12
PYSEC-2020-225
2020-10-16 06:15:00
cvelist
cvelist
CVE-2020-26943
2020-10-16 05:12:46
cve
cve
CVE-2020-26943
2020-10-16 06:15:12