CVE-2020-24365
8.8
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 2.8 / Impact: 5.9
Source: NVD
Description
An issue was discovered on Gemtek WRTM-127ACN 01.01.02.141 and WRTM-127x9 01.01.02.127 devices. The Monitor Diagnostic network page allows an authenticated attacker to execute a command directly on the target machine. Commands are executed as the root user (uid 0). (Even if a login is required, most routers are left with default credentials.)
Affected (2)
Products: Gemteks: Wrtm 127acn Firmware, Wrtm 127x9 Firmware
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version 01.01.02.141 |
| Running on/with | Platform Versions |
|---|---|
Gemteks Wrtm 127acn | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Version 01.01.02.127 |
| Running on/with | Platform Versions |
|---|---|
Gemteks Wrtm 127x9 | All versions |
Related CWEs
CWE-1188
Initialization of a Resource with an Insecure Default
The product initializes or sets a resource with a default that is intended to be changed by the administrator, but the default is not secure.
CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.
References (4)
Source: cve@mitre.org
ExploitThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitThird Party Advisory
Timeline
No history available yet.