Home / Early Warning / Vulnerabilidades / CVE-2020-13404

CVE-2020-13404

Type: 
OS Command Injections
Severity: 
High
Publication date: 
08/05/2020
Last modified: 
08/10/2020
Description
The ATOS/Sips (aka Atos-Magento) community module 3.0.0 to 3.0.5 for Magento allows command injection.
Impact
Access Vector: Through network
Access Complexity: Low
Authentication: Requires a single instance to exploit
Impact Type: Total commitment on system integrity + Total commitment on system confidentiality + Total commitment on system availability
Vulnerable software and versions
  • cpe:2.3:a:quadra-informatique:atos\/sips:*:*:*:*:*:magento:*:*
To consult the complete list of products and versions see this page
Explanation of fields