CVE-2020-10603

Summary

WebAccess/NMS (versions prior to 3.0.2) does not properly sanitize user input and may allow an attacker to inject system commands remotely.

Affected Software

VendorProductVersion RangeStatus
n/aWebAccess/NMSVersions prior to 3.0.2affected

Weaknesses

  • CWE-78: IMPROPER NEUTRALIZATION OF SPECIAL ELEMENTS USED IN AN OS COMMAND ('OS COMMAND INJECTION') CWE-78

ADP Enrichment

CVE Program Container

Additional References

References