090502096 - Sunhillo.SureLine.CVE-2021-36380.Remote.Command.Injection

description-logoDescription

This indicates an attack attempt to exploit a Remote Command Injection Vulnerability in Sunhillo SureLine.
The vulnerability is due to insufficient sanitizing of user supplied inputs in the application while handling maliciously crafted requests. A remote attacker can exploit this to execute arbitrary code via a crafted request on the target server.

description-logoOutbreak Alert

The attack on Sunhillo SureLine identified as CVE-2021-36380 allows a malicious actor to exploit an unauthenticated OS Command Injection vulnerability. Once established, the attacker can gain command over the targeted system and potentially achieving full system compromise.

View the full Outbreak Alert Report

affected-products-logoAffected Products

Sunhillo SureLine before 8.7.0.1.1

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://www.sunhillo.com/product/sureline/

Version Updates

Date Version Detail
2024-04-15 0.00374

CVE References

CVE-2021-36380