CVE-2020-7242

2020-01-2021:56:46

mitre

www.cve.org

7.5 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.6%

JSON

Comtech Stampede FX-1010 7.4.3 devices allow remote authenticated administrators to achieve remote code execution by navigating to the Diagnostics Trace Route page and entering shell metacharacters in the Target IP address field. (In some cases, authentication can be achieved with the comtech password for the comtech account.)

References

sku11army.blogspot.com/2020/01/comtech-authenticated-rce-on-comtech.html