VYPR
Unrated severityNVD Advisory· Published Oct 23, 2020· Updated Aug 4, 2024

CVE-2020-25466

CVE-2020-25466

Description

A SSRF vulnerability exists in the downloadimage interface of CRMEB 3.0, which can remotely download arbitrary files on the server and remotely execute arbitrary code.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • CRMEB/CRMEBdescription
  • Crmeb/Crmebllm-fuzzy
    Range: =3.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.