Skip to main content

Gateone

2 CVEs product

Monthly

CVE-2020-35736 HIGH POC THREAT This Week

GateOne 1.1 allows arbitrary file download without authentication via /downloads/.. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Gateone
NVD GitHub
CVSS 3.1
7.5
EPSS
15.4%
CVE-2020-20184 CRITICAL POC Act Now

GateOne allows remote attackers to execute arbitrary commands via shell metacharacters in the port field when attempting an SSH connection. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Gateone
NVD GitHub
CVSS 3.1
9.8
EPSS
2.7%
EPSS 15% CVSS 7.5
HIGH POC THREAT This Week

GateOne 1.1 allows arbitrary file download without authentication via /downloads/.. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Gateone
NVD GitHub
EPSS 3% CVSS 9.8
CRITICAL POC Act Now

GateOne allows remote attackers to execute arbitrary commands via shell metacharacters in the port field when attempting an SSH connection. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Gateone
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy