Remote Command Execution Vulnerability in Ubilling v1.0.9

Remote Command Execution Vulnerability in Ubilling v1.0.9

CVE-2020-29311 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Ubilling v1.0.9 allows Remote Command Execution as Root user by executing a malicious command that is injected inside the config file and being triggered by another part of the software.

Learn more about our User Device Pen Test.