CVE-2020-5772

High

Improper Input Validation in Teltonika firmware TRB2_R_00.02.04.01 allows a remote, authenticated attacker to gain root privileges by…

tenable·CWE-494·Published 2020-08-03

CVSS

7.5

EPSS

0.01

KEV

Exploits

cve.orgen

169 chars

Improper Input Validation in Teltonika firmware TRB2_R_00.02.04.01 allows a remote, authenticated attacker to gain root privileges by uploading a malicious package file.

NVDen

169 chars

Improper Input Validation in Teltonika firmware TRB2_R_00.02.04.01 allows a remote, authenticated attacker to gain root privileges by uploading a malicious package file.

Una Comprobación de Entrada Inapropiada en Teltonika versión de firmware TRB2_R_00.02.04.01, permite a un atacante remoto autenticado alcanzar privilegios root mediante la carga de un archivo de paquete malicioso

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	7.1	3.9	10.0	AV:N/AC:H/Au:S/C:C/I:C/A:C
3.1	Primary	NVD	7.5	1.6	5.9	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H