CVE-2020-12843

CVE-2020-12843

EPSS 1.3%

ismartgate PRO 1.5.9 is vulnerable to malicious file uploads via the form for uploading sounds to garage doors. The magic bytes for WAV must be used.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://ismartgate.com/secure-garage-door/https://kth.diva-portal.org/smash/get/diva2:1464458/FULLTEXT01.pdf