CVE-2020-12107

Sažetak

The Web portal of the WiFi module of VPNCrypt M10 2.6.5 allows command injection via a text field, which allow full control over this module's Operating System.

Reference

https://www.stengg.com/cybersecurity
https://www.stengg.com/media/1076253/vpncrypt-m10-cve-advisory-notice.pdf

CVSS

Base:	7.5
Impact:	6.4
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

19-08-2020 - 12:54

Objavljeno

12-08-2020 - 19:15