CVE-2020-10208

2020-12-2923:41:12

mitre

www.cve.org

9.9 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.8%

JSON

Command Injection in EntoneWebEngine in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series and Kami7B allows authenticated remote attackers to execute arbitrary commands with root user privileges.

References

andre-oudhof.medium.com/pwning-my-isps-stbs-c5e78544274d#9cf3