Skip to main content

Imcat CVE-2020-23520

HIGH
Unrestricted Upload of File with Dangerous Type (CWE-434)
2020-12-09 cve@mitre.org
7.2
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.2 HIGH
AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

1
CVE Published
Dec 09, 2020 - 16:15 nvd
HIGH 7.2

DescriptionNVD

imcat 5.2 allows an authenticated file upload and consequently remote code execution via the picture functionality.

AnalysisAI

imcat 5.2 allows an authenticated file upload and consequently remote code execution via the picture functionality. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Technical ContextAI

This vulnerability is classified as Unrestricted File Upload (CWE-434), which allows attackers to upload malicious files that can be executed on the server. imcat 5.2 allows an authenticated file upload and consequently remote code execution via the picture functionality. Affected products include: Txjia Imcat.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Validate file types server-side, store uploads outside webroot, use random filenames, scan for malware.

More in Imcat

View all
CVE-2019-14968 CRITICAL POC
9.8 Aug 12

An issue was discovered in imcat 4.9. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no

CVE-2018-20605 CRITICAL POC
9.8 Dec 30

imcat 4.4 allows remote attackers to execute arbitrary PHP code by using root/run/adm.php to modify the boot/bootskip.ph

CVE-2018-20608 HIGH POC
7.5 Dec 30

imcat 4.4 allows remote attackers to read phpinfo output via the root/tools/adbug/binfo.php?phpinfo1 URI. Rated high sev

CVE-2018-20606 HIGH POC
7.5 Dec 30

imcat 4.4 allows full path disclosure via a dev.php?tools-ipaddr&api=Pcoln&uip= URI. Rated high severity (CVSS 7.5), thi

CVE-2018-20611 MEDIUM POC
6.1 Dec 30

imcat 4.4 allow XSS via a crafted cookie to the root/tools/adbug/binfo.php?cookie URI. Rated medium severity (CVSS 6.1),

CVE-2019-8436 MEDIUM POC
5.4 Feb 18

imcat 4.5 has Stored XSS via the root/run/adm.php fm[instop][note] parameter. Rated medium severity (CVSS 5.4), this vul

CVE-2018-20609 MEDIUM POC
5.3 Dec 30

imcat 4.4 allows remote attackers to obtain potentially sensitive configuration information via the root/tools/adbug/che

CVE-2018-20607 MEDIUM POC
5.3 Dec 30

imcat 4.4 allows remote attackers to obtain potentially sensitive debugging information via the root/tools/adbug/binfo.p

CVE-2018-20610 MEDIUM POC
4.9 Dec 30

imcat 4.4 allows directory traversal via the root/run/adm.php efile parameter. Rated medium severity (CVSS 4.9), this vu

Share

CVE-2020-23520 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy