Is Security Analytics vulnerable to CVE-2020-15778
Article ID: 403491
Updated On:
Products
Security Analytics
Issue/Introduction
The security team wants to know if Security Analytics is vulnerable to CVE-2020-15778
Environment
SA 8.3.1
Resolution
This CVE involves executing a shell command through scp when valid SSH credentials are present. Since authenticated users can execute shell commands by design, this is considered expected behavior—not an exploit. As such, Security Analytics is not considered vulnerable to this issue.
Feedback
Yes
No
Powered by
