OpenTSDB Remote Code Execution via Command Injection in yrange Parameter

OpenTSDB Remote Code Execution via Command Injection in yrange Parameter

CVE-2020-35476 · CRITICAL Severity


A remote code execution vulnerability occurs in OpenTSDB through 2.4.0 via command injection in the yrange parameter. The yrange value is written to a gnuplot file in the /tmp directory. This file is then executed via the shell script. (tsd/ attempted to prevent command injections by blocking backticks but this is insufficient.)

Learn more about our Web Application Penetration Testing UK.