CVE-2020-27386
CVE-2020-27386
Vexday Risk Score
40Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS —EPSS 72.9%KEV nãoPoC —Nuclei —Metasploit simPatch —
Lifecycle
28 Sep 2020Metasploit module available
12 Nov 2020Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
An unrestricted file upload issue in FlexDotnetCMS before v1.5.9 allows an authenticated remote attacker to upload and execute arbitrary files by using the FileManager to upload malicious code (e.g., ASP code) in the form of a safe file type (e.g., a TXT file), and then using the FileEditor (in v1.5.8 and prior) or the FileManager's rename function (in v1.5.7 and prior) to rename the file to an executable extension (e.g., ASP), and finally executing the file via an HTTP GET request to /<path_to_file>.
Affected products
n/a · n/a