CVE-2020-8655
CVE-2020-8655
In short
A configuration flaw in EyesOfNetwork 5.3 allows the web server user to run any command with root privileges by creating a malicious nmap script, bypassing normal access restrictions.
Technical detail
The sudoers configuration in EyesOfNetwork 5.3 improperly permits the apache user to execute arbitrary commands as root through a specially crafted NSE (Nmap Scripting Engine) script. This privilege escalation vulnerability requires local access to the system but allows complete system compromise.
Summary generated and translated by AI from the official description.
An issue was discovered in EyesOfNetwork 5.3. The sudoers configuration is prone to a privilege escalation vulnerability, allowing the apache user to run arbitrary commands as root via a crafted NSE script for nmap 7.
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected products
n/a · n/apublic PoCs found — 4
cve_referencepacketstormsecurity.com/files/156266/EyesOfNetwork-5.3-Remote-Code-Execution.htmlunverifiedcve_referencepacketstormsecurity.com/files/156605/EyesOfNetwork-AutoDiscovery-Target-Command-Execution.htmlunverifiedexploitdbwww.exploit-db.com/exploits/48169unverifiedexploitdbwww.exploit-db.com/exploits/48025unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://packetstormsecurity.com/files/156266/EyesOfNetwork-5.3-Remote-Code-Execution.htmlhttp://packetstormsecurity.com/files/156605/EyesOfNetwork-AutoDiscovery-Target-Command-Execution.htmlhttps://github.com/EyesOfNetworkCommunity/eonconf/issues/8https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-8655