Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:33645
HistoryJan 14, 2022 - 6:00 a.m.

Remote Code Execution (RCE)

2022-01-1406:00:46
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
223

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

JSON

telnet is vulnerable to remote code execution. The vulnerability exists due to a lack of check on the boundary of Nextitem() Function. This vulnerability exists in the telnet-server package, not in the telnet client-side package.

References

Related

checkpoint_advisories 1
nessus 40
osv 4
oraclelinux 4
cve 1
openvas 19
paloalto 1
cisco 1
prion 1
debian 2
fedora 3
redhat 7
broadcom 1
mageia 2
redhatcve 1
cisa 1
debiancve 1
ubuntu 2
amazon 2
cvelist 1
ubuntucve 1
centos 2
arista 1
f5 1
archlinux 1
jvn 1
oracle 1
checkpoint_advisories
checkpoint_advisories
Netkit Telnet Buffer Overflow (CVE-2020-10188)
2020-12-27 00:00:00
nessus
nessus
NewStart CGSL CORE 5.05 / MAIN 5.05 : telnet Vulnerability (NS-SA-2020-0085)
2020-12-09 00:00:00
NewStart CGSL MAIN 4.05 : telnet Vulnerability (NS-SA-2020-0045)
2020-09-07 00:00:00
Fedora 31 : 1:telnet (2020-e7b942a47a)
2020-04-06 00:00:00
osv
osv
inetutils vulnerability
2021-08-20 17:56:24
inetutils - security update
2020-08-24 00:00:00
inetutils vulnerability
2021-08-19 19:14:10
oraclelinux
oraclelinux
telnet security update
2020-04-07 00:00:00
telnet security update
2020-04-07 00:00:00
krb5-appl security update
2020-04-13 00:00:00
cve
cve
CVE-2020-10188
2020-03-06 15:15:00
openvas
openvas
Huawei EulerOS: Security Advisory for telnet (EulerOS-SA-2020-1541)
2020-04-30 00:00:00
Debian: Security Advisory (DLA-2176-1)
2020-05-15 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:1533-1)
2021-04-19 00:00:00
paloalto
paloalto
PAN-OS: Impact of Telnet Remote-Code-Execution (RCE) Vulnerability (CVE-2020-10188)
2021-09-08 16:00:00
cisco
cisco
Telnet Vulnerability Affecting Cisco Products: June 2020
2020-06-24 16:00:00
prion
prion
Buffer overflow
2020-03-06 15:15:00
debian
debian
[SECURITY] [DLA 2341-1] inetutils security update
2020-08-24 09:10:26
[SECURITY] [DLA 2176-1] inetutils security update
2020-05-14 12:31:25
fedora
fedora
[SECURITY] Fedora 30 Update: telnet-0.17-77.fc30
2020-04-04 04:19:03
[SECURITY] Fedora 32 Update: telnet-0.17-79.fc32
2020-04-01 16:35:49
[SECURITY] Fedora 31 Update: telnet-0.17-78.fc31
2020-04-04 03:23:08
redhat
redhat
(RHSA-2020:1342) Important: telnet security update
2020-04-07 07:01:47
(RHSA-2020:1334) Important: telnet security update
2020-04-06 15:09:42
(RHSA-2020:1349) Important: krb5-appl security update
2020-04-07 09:46:35
broadcom
broadcom
BSA-2021-1013
2021-07-10 00:00:00
mageia
mageia
Updated krb5-appl packages fix security vulnerability
2020-04-15 13:12:14
Updated netkit-telnet packages fix security vulnerability
2020-05-15 18:48:04
redhatcve
redhatcve
CVE-2020-10188
2020-03-09 15:41:07
cisa
cisa
Cisco Releases Security Advisory for Telnet Vulnerability in IOS XE Software
2020-06-25 00:00:00
debiancve
debiancve
CVE-2020-10188
2020-03-06 15:15:00
ubuntu
ubuntu
Inetutils vulnerability
2021-08-20 00:00:00
Inetutils vulnerability
2021-08-19 00:00:00
amazon
amazon
Important: telnet
2020-05-05 01:20:00
Important: telnet
2020-06-23 06:42:00
cvelist
cvelist
CVE-2020-10188
2020-03-06 14:07:21
ubuntucve
ubuntucve
CVE-2020-10188
2020-03-06 00:00:00
centos
centos
telnet security update
2020-04-08 15:30:05
krb5 security update
2020-04-08 15:29:38
arista
arista
Security Advisory 0048
2020-05-13 00:00:00
f5
f5
K22130301 : Telnet vulnerability CVE-2020-10188
2020-05-07 00:00:00
archlinux
archlinux
[ASA-202106-20] inetutils: arbitrary code execution
2021-06-09 00:00:00
jvn
jvn
JVN#96561229: Multiple vulnerabilities in Operation management interface of FUJITSU Network IPCOM
2022-05-09 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2021
2021-04-20 00:00:00

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

JSON
Related for VERACODE:33645
checkpoint_advisories1nessus40osv4oraclelinux4cve1openvas19paloalto1cisco1prion1debian2fedora3redhat7broadcom1mageia2redhatcve1cisa1debiancve1ubuntu2amazon2cvelist1ubuntucve1centos2arista1f51archlinux1jvn1oracle1