Vulnerabilities > CVE-2020-14072 - Unspecified vulnerability in Mk-Auth 19.01

047910
CVSS 10.0 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
low complexity
mk-auth
critical
NVD
Published: 2020-06-29
Updated: 2021-07-21

Summary

An issue was discovered in MK-AUTH 19.01. It allows command execution as root via shell metacharacters to /auth admin scripts.

Vulnerable Configurations

Part Description Count
Application
Mk-Auth
1

References