Skip to main content

Zeroshell

2 CVEs product

Monthly

CVE-2020-29390 CRITICAL POC THREAT Act Now

Zeroshell 3.9.3 contains a command injection vulnerability in the /cgi-bin/kerbynet StartSessionSubmit parameter that could allow an unauthenticated attacker to execute a system command by using. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Zeroshell
NVD
CVSS 3.1
9.8
EPSS
36.7%
CVE-2019-12725 CRITICAL POC THREAT Act Now

Zeroshell 3.9.0 is prone to a remote command execution vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Zeroshell
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
89.8%
EPSS 37% CVSS 9.8
CRITICAL POC THREAT Act Now

Zeroshell 3.9.3 contains a command injection vulnerability in the /cgi-bin/kerbynet StartSessionSubmit parameter that could allow an unauthenticated attacker to execute a system command by using. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Zeroshell
NVD
EPSS 90% CVSS 9.8
CRITICAL POC THREAT Act Now

Zeroshell 3.9.0 is prone to a remote command execution vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Zeroshell
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy