CVE-2020-8816 - Pi-Hole AdminLTE Remote Code Execution Vulnerability
Project:Pi-hole
Product:AdminLTE
Date Added:2021-12-10Due Date:2022-06-10
Vulnerability Name
Pi-Hole AdminLTE Remote Code Execution Vulnerability
Description
Pi-hole Web v4.3.2 (aka AdminLTE) allows Remote Code Execution by privileged dashboard users via a crafted DHCP static lease.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2020-8816