CVE-2020-17383
N/A
N/A
Summary
A directory traversal vulnerability on Telos Z/IP One devices through 4.0.0r grants an unauthenticated individual root level access to the device's file system. This can be used to identify configuration settings, password hashes for built-in accounts, and the cleartext password for remote configuration of the device through the WebUI.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://www.telosalliance.com/downloads?search=software-updates#downloadListing
- https://sra.io/blog-post/
- https://sra.io/blog/this-traversal-had-a-face-for-radio-cve-2020-17383/
References
- https://www.telosalliance.com/downloads?search=software-updates#downloadListing
- https://sra.io/blog-post/
- https://sra.io/blog/this-traversal-had-a-face-for-radio-cve-2020-17383/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.