CVE-2017-20084
JUNG Smart Visu Server KNX Group Address backdoor
In short
A backdoor vulnerability exists in JUNG Smart Visu Server's KNX Group Address component that allows unauthorized access. An attacker with local access can exploit this flaw to gain control of the system.
Technical detail
A backdoor condition exists in the KNX Group Address functionality of JUNG Smart Visu Server (versions 1.0.804, 1.0.830, 1.0.832) exploitable via local access, potentially allowing privilege escalation or system compromise. The vulnerability requires local presence on the affected device and impacts confidentiality and integrity of the system.
Summary generated and translated by AI from the official description.
A vulnerability has been found in JUNG Smart Visu Server 1.0.804/1.0.830/1.0.832 and classified as critical. Affected by this vulnerability is an unknown functionality of the component KNX Group Address. The manipulation leads to backdoor. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. Upgrading to version 1.0.900 is able to address this issue. It is recommended to upgrade the affected component.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Affected products
JUNG · Smart Visu ServerWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →