Skip to content

Commit bf89e0f

Browse files
committed
add: AVE-2026-0088
1 parent bcbb40c commit bf89e0f

1 file changed

Lines changed: 17 additions & 36 deletions

File tree

vulns/2026/AVE-2026-0088.toml

Lines changed: 17 additions & 36 deletions
Original file line numberDiff line numberDiff line change
@@ -1,44 +1,25 @@
1-
[id]
2-
ave_id = "AVE-2026-0088"
3-
cve_id = "CNVD-2020-46552"
4-
aliases = ["CNVD-2020-46552"]
5-
61
[basic]
7-
title = "深信服EDR终端检测响应平台远程命令执行漏洞(CNVD-2020-46552)"
8-
description = "深信服终端检测响应平台(EDR)v3.2.16、v3.2.17、v3.2.19版本存在OS命令注入漏洞。攻击者可通过向管理平台发送特制的HTTP请求,利用c.php中extract()函数的变量覆盖缺陷,将函数名覆盖为system并注入任意系统命令,从而在未授权的情况下远程执行任意代码并获取服务器权限。该漏洞影响范围包括中国大陆、香港及海外部分部署实例,共计约499个受影响服务对外开放。"
9-
severity = "HIGH"
10-
score = 8.7
11-
cvss_v3 = "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
12-
published = "2020-08-18"
13-
updated = "2020-08-18"
14-
sources = ["cnvd", "nuclei", "sangfor", "nosec", "360cert"]
15-
remediation = "深信服官方已于2020年7月9日发布修复版本EDR v3.2.21,建议受影响用户立即升级至该版本或更高版本。用户可通过管理平台在线升级功能自动安装升级包,或从深信服官方论坛下载升级包进行手动升级。对于无法在线升级的用户,可在系统管理-升级管理-平台和终端升级界面导入升级包完成修复。"
16-
17-
[affected]
18-
vendor = "深信服"
19-
product = "终端检测响应平台(EDR)"
20-
affected_versions = ["v3.2.16", "v3.2.17", "v3.2.19"]
21-
fixed_version = "v3.2.21"
2+
description = ""
3+
published = ""
4+
remediation = "Refer to vendor advisory and upgrade to fixed version."
5+
score = 0.0
6+
severity = "UNKNOWN"
7+
sources = ["nuclei"]
8+
title = "NUCLEI-HTTP-CNVD-2020-CNVD-2020-46552-YAML 漏洞"
9+
updated = ""
2210

2311
[exploit]
24-
poc = []
25-
exp = []
26-
nuclei_templates = [
27-
{id = "http/cnvd/2020/CNVD-2020-46552.yaml", name = "Sangfor EDR Remote Command Execution", url = "https://github.com/projectdiscovery/nuclei-templates/blob/master/http/cnvd/2020/CNVD-2020-46552.yaml"}
28-
]
12+
exp_urls = []
13+
poc_urls = []
2914

30-
[references]
31-
nvd = []
32-
cnvd = ["https://www.cnvd.org.cn/flaw/show/CNVD-2020-46552", "https://www.cnvd.org.cn/webinfo/show/5677"]
33-
other = [
34-
"https://nosec.org/home/detail/4532.html",
35-
"https://www.sangfor.com/blog/cybersecurity/sangfor-endpoint-secure-remote-command-execution-vulnerability",
36-
"https://nsfocusglobal.com/sangfor-edr-remote-command-execution-vulnerability-handling-guide/",
37-
"https://sechub.in/view/2156377",
38-
"https://cn-sec.com/archives/721509.html",
39-
"https://vulncheck.com/advisories/sangfor-edr-command-injection"
40-
]
15+
[id]
16+
aliases = ["NUCLEI-HTTP-CNVD-2020-CNVD-2020-46552-YAML"]
17+
ave_id = "AVE-2026-0088"
18+
cve_id = "NUCLEI-HTTP-CNVD-2020-CNVD-2020-46552-YAML"
4119

4220
[meta]
4321
collected_at = "2026-07-11T00:08:04.040601347+00:00"
4422
status = "completed"
23+
24+
[references]
25+
urls = []

0 commit comments

Comments
 (0)