Unrated severityCISA KEVNVD Advisory· Published May 29, 2020· Updated Oct 21, 2025
CVE-2020-8816
CVE-2020-8816
Description
Pi-hole Web v4.3.2 (aka AdminLTE) allows Remote Code Execution by privileged dashboard users via a crafted DHCP static lease.
Affected products
1- Pi-hole Web/Pi-hole Webdescription
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7- packetstormsecurity.com/files/157861/Pi-Hole-4.3.2-DHCP-MAC-OS-Command-Execution.htmlmitrex_refsource_CONFIRM
- packetstormsecurity.com/files/158737/Pi-hole-4.3.2-Remote-Code-Execution.htmlmitrex_refsource_MISC
- github.com/pi-hole/AdminLTE/commits/mastermitrex_refsource_MISC
- github.com/pi-hole/AdminLTE/pull/1165mitrex_refsource_MISC
- github.com/pi-hole/AdminLTE/releases/tag/v4.3.3mitrex_refsource_MISC
- natedotred.wordpress.com/2020/03/28/cve-2020-8816-pi-hole-remote-code-execution/mitrex_refsource_MISC
- twitter.com/Nate_Kappa/status/1243900213665902592mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.