Main Vulnerability Database Vulnerabilities #VU27308

#VU27308 OS Command Injection in Metasploit - CVE-2020-7350

Published: April 24, 2020 / Updated: April 27, 2020

Vulnerability identifier: #VU27308

Vulnerability risk: High

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Amber

CVE-ID: CVE-2020-7350

CWE-ID: CWE-78

Exploitation vector: Remote access

Exploit availability: Public exploit is available

Vulnerable software:
Metasploit

Software vendor:
Rapid7

Description

The vulnerability allows a remote attacker to execute arbitrary shell commands on the target system.

The vulnerability exists due to the libnotify plugin accepts untrusted user-supplied data via a remote computer's hostname or service name on the operator's terminal. A remote unauthenticated attacker can use a specially-crafted hostname or service name and execute arbitrary OS commands on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Remediation

Install updates from vendor's website.

External links

https://github.com/rapid7/metasploit-framework/issues/13026

#VU27308 OS Command Injection in Metasploit - CVE-2020-7350

Description

Remediation

External links

Please verify you're human