Main Vulnerability Database Exploits ID:7361 - Exploit for Command Injection in Pi-hole - CVE-2020-8816

ID:7361 - Exploit for Command Injection in Pi-hole - CVE-2020-8816

Published: February 18, 2022

Vulnerability identifier: #VU49027

Vulnerability risk: Medium

CVE-ID: CVE-2020-8816

CWE-ID: CWE-77

Exploitation vector: Remote access

Vulnerable software:
Pi-hole

Link to public exploit:

https://github.com/martinsohn/CVE-2020-8816

Vulnerability description

The vulnerability allows a remote attacker to execute arbitrary commands on the target system.

The vulnerability exists due to improper input validation. A remote authenticated attacker can use a specially crafted DHCP static lease and execute arbitrary commands on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Remediation

Install updates from vendor's website.

ID:7361 - Exploit for Command Injection in Pi-hole - CVE-2020-8816

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human