CVE-2020-16152

high-risk
Published 2021-11-14

The NetConfig UI administrative interface in Extreme Networks ExtremeWireless Aerohive HiveOS and IQ Engine through 10.0r8a allows attackers to execute PHP code as the root user via remote HTTP requests that insert this code into a log file and then traverse to that file.

Do I need to act?

!
84.9% chance of exploitation in next 30 days
EPSS score — higher than 15% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
9
CVSS 9.8/10 Critical
NETWORK / LOW complexity

Affected Products (3)

Affected Vendors

Extremenetworks

References (4)

Exploit http://packetstormsecurity.com/files/164957/Aerohive-NetConfig-10.0r8a-Local-Fil...
Vendor Advisory https://gtacknowledge.extremenetworks.com/articles/Vulnerability_Notice/VN-2020-...
Exploit http://packetstormsecurity.com/files/164957/Aerohive-NetConfig-10.0r8a-Local-Fil...
Vendor Advisory https://gtacknowledge.extremenetworks.com/articles/Vulnerability_Notice/VN-2020-...
61
/ 100
high-risk
Severity 32/34 · Critical
Exploitability 20/34 · Moderate
Exposure 9/34 · Low