CVE-2020-19907

A command injection vulnerability in the sandcat plugin of Caldera 2.3.1 and earlier allows authenticated attackers to execute any command or service.

Summary:

A command injection vulnerability in the sandcat plugin of Caldera 2.3.1 and earlier allows authenticated attackers to execute any command or service.

Reference Links(if available):

  • https://github.com/mitre/caldera/issues/462
  • CVSS Score (if available)

    v2: / MEDIUM

    v3: /

    Links to Exploits(if available)