← Back

CVE-2020-16204

nvd nist
Published: Sep 1, 2020Modified: Nov 21, 2024

JSON object

Loading...
9.8
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD

Description

The affected product is vulnerable due to an undocumented interface found on the device, which may allow an attacker to execute commands as root on the device on the N-Tron 702-W / 702M12-W (all versions).

Affected (2)

Redlion
2 products
N Tron 702 W Firmware
N Tron 702m12 W Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
N Tron 702 W Firmware
All versions
Running on/withPlatform Versions
Redlion
N Tron 702 W
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
N Tron 702m12 W Firmware
All versions
Running on/withPlatform Versions
Redlion
N Tron 702m12 W
All versions

Related CWEs

CWE-912
Hidden Functionality
The product contains functionality that is not documented, not part of the specification, and not accessible through an interface or command sequence that is obvious to the product's users or administrators.

References (6)

Source: ics-cert@hq.dhs.gov
ExploitThird Party AdvisoryVDB Entry
Source: ics-cert@hq.dhs.gov
Mailing ListThird Party Advisory
Source: ics-cert@hq.dhs.gov
Third Party AdvisoryUS Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryUS Government Resource

Timeline

No history available yet.