Command Injection Vulnerability in Maxum Rumpus 8.2.13 and 8.2.14 Web Administration

Command Injection Vulnerability in Maxum Rumpus 8.2.13 and 8.2.14 Web Administration

CVE-2020-27575 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Maxum Rumpus 8.2.13 and 8.2.14 is affected by a command injection vulnerability. The web administration contains functionality in which administrators are able to manage users. The edit users form contains a parameter vulnerable to command injection due to insufficient validation.

Learn more about our Web App Pen Testing.