Vulnerability feed

Vulnerability

CVE-2020-25494

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2020-25494
Description:: Xinuos (formerly SCO) Openserver v5 and v6 allows attackers to execute arbitrary commands via shell metacharacters in outputform or toclevels parameter to cgi-bin/printbook.
Last updated date:: 07/21/2021

Reports

alt

ACTIVELY EXPLOITED

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 09/30/2021
Reference url to background: https://blogs.juniper.net/en-us/threat-research/necro-python-botnet-goes-after-vulnerable-visualtools-dvr

Type:: exploit
Confidence:: HIGH
Date of publishing:: 07/21/2021
Reference url to background: http://packetstormsecurity.com/files/160635/SCO-Openserver-5.0.7-Command-Injection.html

Type:: exploit
Confidence:: HIGH
Date of publishing:: 07/21/2021
Reference url to background: https://github.com/Ramikan/Vulnerabilities/blob/master/SCO%20Openserver%20OS%20Command%20Injection%20Vulnerability

Vulnerability Feed Contributors About Blog

@inTheWild

©2025 |