Vulnerability: Lack of Cryptographic Signature Verification in Sqreen PHP Agent Daemon

Vulnerability: Lack of Cryptographic Signature Verification in Sqreen PHP Agent Daemon

CVE-2020-25490 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Lack of cryptographic signature verification in the Sqreen PHP agent daemon before 1.16.0 makes it easier for remote attackers to inject rules for execution inside the virtual machine.

Learn more about our Web Application Penetration Testing UK.