CVE CVE-2020-10603 Mappings

WebAccess/NMS (versions prior to 3.0.2) does not properly sanitize user input and may allow an attacker to inject system commands remotely.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name
CVE-2020-10603 WebAccess/NMS primary_impact T1059 Command and Scripting Interpreter
CVE-2020-10603 WebAccess/NMS exploitation_technique T1133 External Remote Services