.. / CVE-2020-5847

Exploit for UnRaid <=6.80 - Remote Code Execution (CVE-2020-5847)

Description:

UnRaid <=6.80 allows remote unauthenticated attackers to execute arbitrary code.

Nuclei Template

View the template here CVE-2020-5847.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2020/CVE-2020-5847.yaml
Copy

References:

https://nvd.nist.gov/vuln/detail/CVE-2020-5847
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-5847
https://sysdream.com/news/lab/
https://github.com/Ostorlab/KEV
https://forums.unraid.net/forum/7-announcements/
https://sysdream.com/news/lab/2020-02-06-cve-2020-5847-cve-2020-5849-unraid-6-8-0-unauthenticated-remote-code-execution-as-root/