Описание
OKER G232V1 v1.03.02.20161129 devices provide a root terminal on a UART serial interface without proper access control. This allows attackers with physical access to interrupt the boot sequence in order to execute arbitrary commands with root privileges and conduct further attacks.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:okerthai:g232v1_firmware:1.03.02.20161129:*:*:*:*:*:*:*
cpe:2.3:h:okerthai:g232v1:-:*:*:*:*:*:*:*
EPSS
Процентиль: 34%
0.00138
Низкий
6.8 Medium
CVSS3
7.2 High
CVSS2
Дефекты
CWE-78
Связанные уязвимости
github
больше 3 лет назад
OKER G232V1 v1.03.02.20161129 devices provide a root terminal on a UART serial interface without proper access control. This allows attackers with physical access to interrupt the boot sequence in order to execute arbitrary commands with root privileges and conduct further attacks.
EPSS
Процентиль: 34%
0.00138
Низкий
6.8 Medium
CVSS3
7.2 High
CVSS2
Дефекты
CWE-78