CVE-2019-12182

2020-03-1316:11:13

mitre

www.cve.org

9.8 High

AI Score

Confidence

High

0.167 Low

EPSS

Percentile

96.1%

JSON

Directory Traversal in Safescan Timemoto and TA-8000 series version 1.0 allows unauthenticated remote attackers to execute code via the administrative API.

References

github.com/ProCheckUp/SafeScan

procheckup.com/blogs/posts/2020/february/remote-code-execution-on-biometric-iot-devices/

safescan.com/

support.timemoto.com/en/s/safescan-time-clock-systems/a/firmware-update-7-dot-03-dot-100-ta8000-14