CVE-2020-12246

Published: Apr 29, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

Beeline Smart Box 2.0.38 routers allow "Advanced settings > Other > Diagnostics" OS command injection via the Ping ping_ipaddr parameter, the Nslookup nslookup_ipaddr parameter, or the Traceroute traceroute_ipaddr parameter.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://yadi.sk/i/YdfXr-ofAN2ZWA

x_refsource_MISC

https://yadi.sk/i/iIUCJVaGEuSaAw

x_refsource_MISC

https://yadi.sk/i/jXV87yn4ZJfSHA

x_refsource_MISC

https://medium.com/%40Pavel.Step/security-analysis-of-the-smart-box-router-932f86dc8a9e

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-12246

Description

Affected Products

References