A POC for IBM Datapower Authenticated Redis RCE Exploit abusing the Test Message Function (CVE-2020-5014)
datapower-redis-rce-exploit (CVE-2020-5014) A POC for IBM DataPower Authenticated Redis RCE Exploit abusing the "Test Message" Function Full explination and demo on Youtube Blog post on tomcopecom Explanation Using the DataPower "Send a Test Message" function available through a authenticated session to the DataPower WebGUI, it is possible to perform a SS