CVE-2020-36907

HIGH

Aerohive HiveOS <= 11.0 - Unauthenticated Denial of Service via NetConfig UI action.php5

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-36907. PoCs published by LiquidWorm.

AI-analyzed exploit summary This exploit sends a crafted HTTP request to the Aerohive NetConfig UI's action.php5 script, triggering a DoS condition that renders the web interface unusable for approximately 5 minutes. The payload is a hex-encoded string that calls the CliWindow function via the _page parameter.

Description

Aerohive HiveOS contains a denial of service vulnerability in the NetConfig UI that allows unauthenticated attackers to render the web interface unusable. Attackers can send a crafted HTTP request to the action.php5 script with specific parameters to trigger a 5-minute service disruption.

Exploits (1)

exploitdb WORKING POC

by LiquidWorm · bashdoshardware

https://www.exploit-db.com/exploits/48441

View Code ZIP pw:eip

This exploit sends a crafted HTTP request to the Aerohive NetConfig UI's action.php5 script, triggering a DoS condition that renders the web interface unusable for approximately 5 minutes. The payload is a hex-encoded string that calls the CliWindow function via the _page parameter.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Extreme Networks Aerohive HiveOS <=11.x

No auth needed

Prerequisites: Network access to the target's web interface

MITRE ATT&CK