CVE-2020-16205

Summary

Using a specially crafted URL command, a remote authenticated user can execute commands as root on the G-Cam and G-Code (Firmware Versions 1.12.0.25 and prior as well as the limited Versions 1.12.13.2 and 1.12.14.5).

Affected Software

VendorProductVersion RangeStatus
n/aG-Cam and G-CodeFirmware Versions 1.12.0.25 and prior as well as the limited Versions 1.12.13.2 and 1.12.14.5affected

Weaknesses

  • CWE-78: IMPROPER NEUTRALIZATION OF SPECIAL ELEMENTS USED IN AN OS COMMAND ('OS COMMAND INJECTION') CWE-78

ADP Enrichment

CVE Program Container

Additional References

References