virus logo Web Application Security

090502096 - Sunhillo.SureLine.CVE-2021-36380.Remote.Command.Injection

description-logoDescription

This indicates an attack attempt to exploit a Remote Command Injection Vulnerability in Sunhillo SureLine.
The vulnerability is due to insufficient sanitizing of user supplied inputs in the application while handling maliciously crafted requests. A remote attacker can exploit this to execute arbitrary code via a crafted request on the target server.

description-logoOutbreak Alert

The attack on Sunhillo SureLine identified as CVE-2021-36380 allows a malicious actor to exploit an unauthenticated OS Command Injection vulnerability. Once established, the attacker can gain command over the targeted system and potentially achieving full system compromise.

View the full Outbreak Alert Report

affected-products-logoAffected Products

Sunhillo SureLine before 8.7.0.1.1

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://www.sunhillo.com/product/sureline/

Version Updates

Date Version Detail
2024-04-15 0.00374

CVE References

CVE-2021-36380
ID 1090502096
Created Apr 15, 2024
Updated Apr 15, 2024
Outbreak Alert Sunhillo SureLine Attack
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
Default Action pass
Active
Affected OS Linux, BSD
Affected App CGI_app
Engine Version 5.0.0 or later