CVSS: 9.8EPSS: 97%CPEs: 1EXPL: 3CVE-2020-7209 – HP LinuxKI 6.01 - Remote Command Injection
https://notcve.org/view.php?id=CVE-2020-7209
LinuxKI v6.0-1 and earlier is vulnerable to an remote code execution which is resolved in release 6.0-2. LinuxKI versiones v6.0-1 y anteriores, es vulnerable a una ejecución de código remota que es resuelta en la versión 6.0-2. HP LinuxKI version 6.01 suffers from a command injection vulnerability. • https://www.exploit-db.com/exploits/48483 http://packetstormsecurity.com/files/157739/HP-LinuxKI-6.01-Remote-Command-Injection.html http://packetstormsecurity.com/files/158025/LinuxKI-Toolset-6.01-Remote-Command-Execution.html https://github.com/HewlettPackard/LinuxKI/releases/tag/v6.0-2 https://github.com/HewlettPackard/LinuxKI/commit/10bef483d92a85a13a59ca65a288818e92f80d78 •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2020-7208
https://notcve.org/view.php?id=CVE-2020-7208
LinuxKI v6.0-1 and earlier is vulnerable to an XSS which is resolved in release 6.0-2. LinuxKI versiones v6.0-1 y anteriores, es vulnerable a un ataque de tipo XSS que es resuelto en la versión 6.0-2. • https://github.com/HewlettPackard/LinuxKI/releases/tag/v6.0-2 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •