CVE-2019-15020

A security vulnerability exists in the Zingbox Inspector versions 1.293 and earlier, that could allow an attacker to supply an invalid software update image to the Zingbox Inspector that could result in command injection.

Published: Oct 9, 2019
Updated: Apr 13, 2023
CVE: CVE-2019-15020
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-346

Affected Software
References

Software	From	Fixed in
zingbox / inspector	-	1.293.x

https://security.paloaltonetworks.com/CVE-2019-15020

Vulnerability Database

289,871

CVE-2019-15020