Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Low

CVE-2020-8500

Disclosure Date: March 02, 2020 (last updated November 08, 2023)
In Artica Pandora FMS 7.42, Web Admin users can execute arbitrary code by uploading a .php file via the Updater or Extension component. NOTE: The vendor reports that this is intended functionality
Attack Vector: NetworkPrivileges: HighUser Interaction: None
0
1
Attacker Value
Unknown

CVE-2020-8511

Disclosure Date: March 23, 2020 (last updated October 06, 2023)
In Artica Pandora FMS through 7.42, Web Admin users can execute arbitrary code by uploading a .php file via the File Repository component, a different issue than CVE-2020-7935 and CVE-2020-8500.
Attack Vector: NetworkPrivileges: HighUser Interaction: None
0
0