← voltar
CVE-2020-8007

CVE-2020-8007

CVSS 9.8 CRITICALEPSS 1.8%CWE-78
The pwrstudio web application of EV Charger (in the server in Circontrol Raption through 5.6.2) is vulnerable to OS command injection via three fields of the configuration menu for ntpserver0, ntpserver1, and pingip.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://circontrol.com/intelligent-charging-solutions/dc-chargers-series/raption-150/http://seclists.org/fulldisclosure/2024/Mar/33https://seclists.org/fulldisclosure/2024/Mar/33