CVE-2020-6760 - OpenCVE

Schmid ZI 620 V400 VPN 090 routers allow an attacker to execute OS commands as root via shell metacharacters to an entry on the SSH subcommand menu, as demonstrated by ping.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:L/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Schmid-telecom	Zi 620 V400 Firmware Zi 620 V400

Configuration 1 [-]

AND

cpe:2.3:o:schmid-telecom:zi_620_v400_firmware:090:*:*:*:*:*:*:*

cpe:2.3:h:schmid-telecom:zi_620_v400:-:*:*:*:*:*:*:*

References

Link	Resource
https://github.com/0xedh/someshit/blob/master/CVE-2020-6760.md	Exploit Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2020-02-06T20:02:59

Updated: 2020-02-06T20:02:59

Reserved: 2020-01-09T00:00:00

Link: CVE-2020-6760

JSON object: View

NVD Information

Status : Analyzed

Published: 2020-02-06T21:15:11.580

Modified: 2020-02-11T19:20:14.337

Link: CVE-2020-6760

JSON object: View

Redhat Information

No data.

CWE

CWE-78

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:schmid-telecom:zi_620_v400_firmware:090:*:*:*:*:*:*:*", "matchCriteriaId": "27B9E6E9-4A8A-4F2E-BA75-819B53E667A1", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:schmid-telecom:zi_620_v400:-:*:*:*:*:*:*:*", "matchCriteriaId": "CA3628E4-BD24-4C13-A190-34EB1C5A985E", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "Schmid ZI 620 V400 VPN 090 routers allow an attacker to execute OS commands as root via shell metacharacters to an entry on the SSH subcommand menu, as demonstrated by ping."}, {"lang": "es", "value": "Los enrutadores Schmid ZI 620 V400 VPN 090, permiten a un atacante ejecutar comandos de Sistema Operativo como root por medio de metacaracteres de shell hacia una entrada en el men\u00fa de subcomando SSH, como es demostrado mediante el ping."}], "id": "CVE-2020-6760", "lastModified": "2020-02-11T19:20:14.337", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2020-02-06T21:15:11.580", "references": [{"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory"], "url": "https://github.com/0xedh/someshit/blob/master/CVE-2020-6760.md"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-78"}], "source": "nvd@nist.gov", "type": "Primary"}]}