CVE-2020-12620

Published July 30th, 2020

View on NVD ↗

CVSS v3

7.8

HIGH

CVSS v2

7.2

HIGH

Affected

PROJECT

Description

Pi-hole 4.4 allows a user able to write to /etc/pihole/dns-servers.conf to escalate privileges through command injection (shell metacharacters after an IP address).

pi-hole/pi-hole

A black hole for Internet advertisements

GitHub

59.5K