CVE-2020-8497
CVE-2020-8497
Vexday Risk Score
40Attention
SSVC decision (CISA)
Act
Exploitation + impact → act immediately
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS —EPSS 5.3%KEV nãoPoC —Nuclei simMetasploit —Patch —
Lifecycle
23 Mar 2020Published on NVD
Recommendation: Patch as soon as possible — active exploitation confirmed.
In Artica Pandora FMS through 7.42, an unauthenticated attacker can read the chat history. The file is in JSON format and it contains user names, user IDs, private messages, and timestamps.
Affected products
n/a · n/aReferences
https://k4m1ll0.com/cve-2020-8497.html