A Remote Code Execution vulnerability in Stimulsoft (aka Stimulsoft Reports) 2013.1.1600.0 allows an attacker to encode C# scripts as base-64 in the report XML file so that they will be compiled and executed on the server that processes this file. This can be used to fully compromise the server.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2020-08-18T20:02:51

Updated: 2024-08-04T13:30:23.051Z

Reserved: 2020-07-21T00:00:00

Link: CVE-2020-15865

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-08-18T21:15:12.097

Modified: 2024-11-21T05:06:20.447

Link: CVE-2020-15865

cve-icon Redhat

No data.