This is a written guide that validates the PoC submitted for the qdPM 9.1 Authenticated RCE vulnerability (CVE-2020–7246) disclosed at the start of this year. This post features the following sections:

Tobin Shields

Tobin Shields is a Information Security instructor in Portland, OR.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store