CVE-2020-35851

HGiga MailSherlock does not validate specific parameters properly. Attackers can use the vulnerability to launch Command inject attacks remotely and execute arbitrary commands of the system.
References
Link Resource
https://www.twcert.org.tw/en/cp-139-4264-f10f4-2.html Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:hgiga:msr45_isherlock-user:*:*:*:*:*:*:*:*
cpe:2.3:a:hgiga:ssr45_isherlock-user:*:*:*:*:*:*:*:*

Information

Published : 2020-12-31 08:15

Updated : 2021-01-07 09:32


NVD link : CVE-2020-35851

Mitre link : CVE-2020-35851

Products Affected
No products.
CWE