CVE-2020-16204
N/A
N/A
Summary
The affected product is vulnerable due to an undocumented interface found on the device, which may allow an attacker to execute commands as root on the device on the N-Tron 702-W / 702M12-W (all versions).
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | N-Tron 702-W / 702M12-W | Versions prior to all versions | affected |
Weaknesses
- CWE-912: HIDDEN FUNCTIONALITY (BACKDOOR) CWE-912
ADP Enrichment
CVE Program Container
Additional References
- https://us-cert.cisa.gov/ics/advisories/icsa-20-240-01
- http://seclists.org/fulldisclosure/2020/Sep/6
- http://packetstormsecurity.com/files/159064/Red-Lion-N-Tron-702-W-702M12-W-2.0.26-XSS-CSRF-Shell.html
References
- https://us-cert.cisa.gov/ics/advisories/icsa-20-240-01
- http://seclists.org/fulldisclosure/2020/Sep/6
- http://packetstormsecurity.com/files/159064/Red-Lion-N-Tron-702-W-702M12-W-2.0.26-XSS-CSRF-Shell.html
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.