exploitDog

CVE-2020-17485

Опубликовано: 16 дек. 2023

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

A Remote Code Execution vulnerability exist in Uffizio's GPS Tracker all versions. The web server can be compromised by uploading and executing a web/reverse shell. An attacker could then run commands, browse system files, and browse local resources

Ссылки

https://www.cisa.gov/news-events/ics-advisories/icsa-21-287-02
Third Party Advisory
US Government Resource
https://www.uffizio.com/
Product
https://www.cisa.gov/news-events/ics-advisories/icsa-21-287-02
Third Party Advisory
US Government Resource
https://www.uffizio.com/
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:uffizio:gps_tracker:*:*:*:*:*:*:*:*

EPSS

Процентиль: 54%

0.00313

Низкий

9.8 Critical

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-vxm8-rc98-qx4f

CVSS3: 9.8

github

около 2 лет назад

A Remote Code Execution vulnerability exist in Uffizio's GPS Tracker all versions. The web server can be compromised by uploading and executing a web/reverse shell. An attacker could then run commands, browse system files, and browse local resources

EPSS

Процентиль: 54%

0.00313

Низкий

9.8 Critical

CVSS3

Дефекты

NVD-CWE-noinfo