Medium severity5.3NVD Advisory· Published Sep 22, 2020· Updated Jun 17, 2026
CVE-2020-14027
CVE-2020-14027
Description
An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. The database connection strings accept custom unsafe arguments, such as ENABLE_LOCAL_INFILE, that can be leveraged by attackers to enable MySQL Load Data Local (rogue MySQL server) attacks.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Ozeki/NG SMS Gatewaydescription
- Range: <=4.17.6
Patches
Vulnerability mechanics
References
2- github.com/DrunkenShells/Disclosures/tree/master/CVE-2020-14027-MySQL%20LOAD%20DATA%20LOCAL%20INFILE%20Attack-Ozeki%20SMS%20GatewaynvdExploitThird Party Advisory
- www.ozeki.hu/index.phpnvdProductVendor Advisory
News mentions
0No linked articles in our index yet.