Vulnerability Details CVE-2020-5639
Directory traversal vulnerability in FileZen versions from V3.0.0 to V4.2.2 allows remote attackers to upload an arbitrary file in a specific directory via unspecified vectors. As a result, an arbitrary OS command may be executed.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.092
EPSS Ranking 92.9%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
Products affected by CVE-2020-5639
-
cpe:2.3:a:soliton:filezen:3.0.0
-
cpe:2.3:a:soliton:filezen:3.0.15
-
cpe:2.3:a:soliton:filezen:4.0.10
-
cpe:2.3:a:soliton:filezen:4.2.0
-
cpe:2.3:a:soliton:filezen:4.2.1
-
cpe:2.3:a:soliton:filezen:4.2.2