CVE-2020-24552
Atop Technology 3G/4G LTE Cellular to Ethernet and Serial Secure Industrial Gateway - Command Injection
Vexday Risk Score
13Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 5.5EPSS 1.4%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
10 set 2020Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
Atop Technology industrial 3G/4G gateway contains Command Injection vulnerability. Due to insufficient input validation, the device's web management interface allows attackers to inject specific code and execute system commands without privilege.
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N
Produtos afetados
Atop Technology · 3G/4G LTE Cellular to Ethernet and Serial Secure Industrial Gateway SE5901Atop Technology · 3G/4G LTE Cellular to Ethernet and Serial Secure Industrial Gateway SE5901BAtop Technology · 3G/4G LTE Cellular to Ethernet and Serial Secure Industrial Gateway SE5904DAtop Technology · 3G/4G LTE Cellular to Ethernet and Serial Secure Industrial Gateway SE5908Atop Technology · 3G/4G LTE Cellular to Ethernet and Serial Secure Industrial Gateway SE5908AAtop Technology · 3G/4G LTE Cellular to Ethernet and Serial Secure Industrial Gateway SE5916Atop Technology · 3G/4G LTE Cellular to Ethernet and Serial Secure Industrial Gateway SE5916A