CVE-2020-10209

Published: Dec 30, 2020Modified: Nov 21, 2024

8.1

Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.2 / Impact: 5.9

Source: NVD

Description

Command Injection in the CPE WAN Management Protocol (CWMP) registration in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series and Kami7B allows man-in-the-middle attackers to execute arbitrary commands with root level privileges.

Affected (6)

Products: Amino: Ak45x Firmware, Ak5xx Firmware, Ak65x Firmware, Aria6xx Firmware, Aria7xx Firmware, Kami7b Firmware

6 products

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amino Ak45x Firmware	All versions

Running on/with	Platform Versions
Amino Ak45x	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amino Ak5xx Firmware	All versions

Running on/with	Platform Versions
Amino Ak5xx	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amino Ak65x Firmware	All versions

Running on/with	Platform Versions
Amino Ak65x	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amino Aria6xx Firmware	All versions

Running on/with	Platform Versions
Amino Aria6xx	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amino Aria7xx Firmware	All versions

Running on/with	Platform Versions
Amino Aria7xx	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amino Kami7b Firmware	All versions

Running on/with	Platform Versions
Amino Kami7b	All versions

Related CWEs

CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

References (2)

https://andre-oudhof.medium.com/pwning-my-isps-stbs-c5e78544274d#4dbc

Source: cve@mitre.org

ExploitThird Party Advisory

https://andre-oudhof.medium.com/pwning-my-isps-stbs-c5e78544274d#4dbc

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.