CVE-2020-19907

July 15, 2021

A command injection vulnerability in the sandcat plugin of Caldera 2.3.1 and earlier allows authenticated attackers to execute any command or service.

Summary:

A command injection vulnerability in the sandcat plugin of Caldera 2.3.1 and earlier allows authenticated attackers to execute any command or service.

Reference Links(if available):

  • https://github.com/mitre/caldera/issues/462

  • CVSS Score (if available)

    v2: / MEDIUM

    v3: /

    Links to Exploits(if available)

  • You may have missed

    image

    [MEOW] – Ransomware Victim: Zyloware

    November 14, 2024
    image

    [MEOW] – Ransomware Victim: Cottles Asphalt Maintenance Inc

    November 14, 2024
    image

    [MEOW] – Ransomware Victim: Karl Malone Toyota

    November 14, 2024
    image

    [MEOW] – Ransomware Victim: Pine Belt Cars

    November 14, 2024
    image

    [MEOW] – Ransomware Victim: J[.]S[.]T[.] Espana

    November 14, 2024