Using a specially crafted URL command, a remote authenticated user can execute commands as root on the G-Cam and G-Code (Firmware Versions 1.12.0.25 and prior as well as the limited Versions 1.12.13.2 and 1.12.14.5).
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/158888/Geutebruck-testaction.cgi-Remote-Command-Execution.html | Exploit Third Party Advisory |
https://us-cert.cisa.gov/ics/advisories/icsa-20-219-03 | Third Party Advisory US Government Resource |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: icscert
Published: 2020-08-14T13:56:23
Updated: 2020-08-17T19:06:10
Reserved: 2020-07-31T00:00:00
Link: CVE-2020-16205
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-08-14T14:15:12.487
Modified: 2020-08-19T21:32:29.860
Link: CVE-2020-16205
JSON object: View
Redhat Information
No data.
CWE