CVE-2020-7357

Public Exploit

Cayin CMS Command Injection

Description

Cayin CMS suffers from an authenticated OS semi-blind command injection vulnerability using default credentials. This can be exploited to inject and execute arbitrary shell commands as the root user through the 'NTP_Server_IP' HTTP POST parameter in system.cgi page. This issue affects several branches and versions of the CMS application, including CME-SE, CMS-60, CMS-40, CMS-20, and CMS version 8.2, 8.0, and 7.5.

References

Link	Tags
https://github.com/rapid7/metasploit-framework/pull/13607	patch exploit
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2020-5570.php	third party advisory exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/182925	vendor advisory third party advisory vdb entry

Frequently Asked Questions

What is the severity of CVE-2020-7357?: CVE-2020-7357 has been scored as a critical severity vulnerability.
How to fix CVE-2020-7357?: To fix CVE-2020-7357, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2020-7357 being actively exploited in the wild?: It is possible that CVE-2020-7357 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~78% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2020-7357?: CVE-2020-7357 affects Cayin Technology Cayin CMS-SE, Cayin Technology Cayin CMS-60, Cayin Technology Cayin CMS-40, Cayin Technology Cayin CMS-20, Cayin Technology Cayin CMS.

Description

Category

CWE-78 – Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

References

Frequently Asked Questions