CVE-2020-8816

Description from NVD

Pi-hole Web v4.3.2 (aka AdminLTE) allows Remote Code Execution by privileged dashboard users via a crafted DHCP static lease.

Information Acquisition Date:2021-04-27T10:58Z
CVSS 2.0: 6.5 MEDIUM CVSS 3.x: 7.2 HIGH

▼ CVSS3 Vec CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

▼ CVSS2 Vec AV:N/AC:L/Au:S/C:P/I:P/A:P

NVD References

 http://packetstormsecurity.com/files/157861/Pi-Hole-4.3.2-DHCP-MAC-OS-Command-Execution.html
     source:CONFIRM
     tags:Third Party Advisory    VDB Entry    
 https://github.com/pi-hole/AdminLTE/commits/master
     source:MISC
     tags:Patch    Third Party Advisory    
 https://github.com/pi-hole/AdminLTE/releases/tag/v4.3.3
     source:MISC
     tags:
 https://twitter.com/Nate_Kappa/status/1243900213665902592?s=20
     source:MISC
     tags:
 https://natedotred.wordpress.com/2020/03/28/cve-2020-8816-pi-hole-remote-code-execution/
     source:MISC
     tags:
 https://github.com/pi-hole/AdminLTE/pull/1165
     source:MISC
     tags:
 http://packetstormsecurity.com/files/158737/Pi-hole-4.3.2-Remote-Code-Execution.html
     source:MISC
     tags:

Refer to Information on External Sites

CVE InfomationExploits or more Infomation
mitreEXPLOIT DATABASE
NVD0day.today
vulmon.comgithub
CVE DetailsTwitter
JVN ENG JPN
Reconshell

Software Tag:

List of frequently cited URLs

URLNum of Times Referred to
http://vulmon.com/vulnerabilitydetails?qid=CVE1677
https://lists.astaro.com/ASGV9-IPS-rules.html#036
http://canyoupwn.me15
https://www.hackplayers.com/2020/03/ejecucion-remota-de-cod...8
https://news.ycombinator.com/item?id=227146616
https://newsbythehour.org/cybr/5
https://twitter.com/_r_netsec/status/12439115019555307533
https://www.reddit.com/r/netsec3
https://natedotred.wordpress.com/2020/03/28/cve-2020-8816-p...3

Information from Twitter

User URL Info Source Date
ipssignatures https://lists.astaro.com/ASGV9-IPS-rules.html#0 Source ipssignatures    1554678962491637760 2022/08/03
ipssignatures https://ipssignatures.appspot.com/?cve=CVE-2020-8816 Source ipssignatures    1554678963183779841 2022/08/03

List of frequently cited URLs

URLNum of Times Referred to
vulmon.com1677
lists.astaro.com36
canyoupwn.me15
www.hackplayers.com8
news.ycombinator.com6
newsbythehour.org5
twitter.com3
www.reddit.com3
natedotred.wordpress.com3

Information from Twitter

User URL Info Source
ipssignatures lists.astaro.com Show Tweet
ipssignatures ipssignatures.appspot.com Show Tweet
GitHub Search Results: Up to 10
NameURL
AndreyRainchik/CVE-2020-8816 https://github.com/AndreyRainchik/CVE-2020-8816
cybervaca/CVE-2020-8816 https://github.com/cybervaca/CVE-2020-8816
team0se7en/CVE-2020-8816 https://github.com/team0se7en/CVE-2020-8816
MartinSohn/CVE-2020-8816 https://github.com/MartinSohn/CVE-2020-8816
GitHub Search Results: Up to 10
NameURL
AndreyRainchik/CVE-2020-8816 github.com
cybervaca/CVE-2020-8816 github.com
team0se7en/CVE-2020-8816 github.com
MartinSohn/CVE-2020-8816 github.com
2022/08/03 Score : 2
Added Har-sia Database : 2020/02/21
Last Modified : 2022/08/03
Highest Scored Date : 2020/03/29
Highest Score : 71