Описание
The S. Siedle & Soehne SG 150-0 Smart Gateway before 1.2.4 allows remote code execution via the backup functionality in the web frontend. By using an exploit chain, an attacker with access to the network can get root access on the gateway.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.2.4 (исключая)
Одновременно
cpe:2.3:o:siedle:sg_150-0_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siedle:sg_150-0:-:*:*:*:*:*:*:*
EPSS
Процентиль: 80%
0.01382
Низкий
8.8 High
CVSS3
9 Critical
CVSS2
Дефекты
CWE-494
Связанные уязвимости
github
больше 3 лет назад
The S. Siedle & Soehne SG 150-0 Smart Gateway before 1.2.4 allows remote code execution via the backup functionality in the web frontend. By using an exploit chain, an attacker with access to the network can get root access on the gateway.
EPSS
Процентиль: 80%
0.01382
Низкий
8.8 High
CVSS3
9 Critical
CVSS2
Дефекты
CWE-494