CVE-2020-16257

CVE-2020-16257

EPSS 3.7%

Winston 1.5.4 devices are vulnerable to command injection via the API.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://labs.bishopfox.com/advisories/winston-privacy-version-1.5.4 https://winstonprivacy.com/