HomePentest-Tools.com Logo

FHEM 6.0 - Local File Inclusion CVE-2020-19360

Severity
CVSSv3 Score
7.5
Vulnerability description

FHEM version 6.0 suffers from a local file inclusion vulnerability.

Risk description

The risk exists that a remote unauthenticated attacker could exploit this vulnerability to read sensitive information from arbitrary files located on the file system of the server.

Recommendation

Apply the latest patch or upgrade to a version that is not affected by the vulnerability.

Codename
Not available
Detectable with
Network Scanner
Scan engine
Nuclei
Exploitable with Sniper
No
CVE Published
Jan 20, 2021
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available