Lucene search
+L

10 matches found

OSV
OSV
added 2020/10/01 8:15 p.m.5 views

CVE-2020-5789

Relative Path Traversal in Teltonika firmware TRB2R00.02.04.3 allows a remote, authenticated attacker to read the contents of arbitrary files on disk...

6.5CVSS6.7AI score0.01358EPSS
Exploits1References1
NVD
NVD
added 2020/10/01 8:15 p.m.20 views

CVE-2020-5786

Cross-site request forgery in Teltonika firmware TRB2R00.02.04.3 allows a remote attacker to perform sensitive application actions by tricking legitimate users into clicking a crafted link...

8.8CVSS0.08804EPSS
Exploits1References1
NVD
NVD
added 2020/10/01 8:15 p.m.15 views

CVE-2020-5784

Server-Side Request Forgery in Teltonika firmware TRB2R00.02.04.3 allows a low privileged user to cause the application to perform HTTP GET requests to arbitrary URLs...

6.5CVSS0.00682EPSS
Exploits1References1
OSV
OSV
added 2020/10/01 8:15 p.m.8 views

CVE-2020-5786

Cross-site request forgery in Teltonika firmware TRB2R00.02.04.3 allows a remote attacker to perform sensitive application actions by tricking legitimate users into clicking a crafted link...

8.8CVSS7.3AI score0.08804EPSS
Exploits1References1
Prion
Prion
added 2020/10/01 8:15 p.m.12 views

Server side request forgery (ssrf)

Server-Side Request Forgery in Teltonika firmware TRB2R00.02.04.3 allows a low privileged user to cause the application to perform HTTP GET requests to arbitrary URLs...

4CVSS6.4AI score0.00682EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2020/10/01 8:15 p.m.11 views

Cross site request forgery (csrf)

Cross-site request forgery in Teltonika firmware TRB2R00.02.04.3 allows a remote attacker to perform sensitive application actions by tricking legitimate users into clicking a crafted link...

6.8CVSS8.4AI score0.08804EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2020/10/01 7:47 p.m.50 views

CVE-2020-5788

CVE-2020-5788 affects Teltonika firmware TRB2_R_00.02.04.3 where a relative path traversal in the admin/certificates/delete action allows a remote, authenticated attacker to delete arbitrary files on disk. Root cause: insufficient validation/sanitization of file paths in the delete endpoint. Impa...

8.5CVSS6.3AI score0.01191EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2020/10/01 7:45 p.m.42 views

CVE-2020-5787

CVE-2020-5787 describes a Relative Path Traversal in Teltonika firmware TRB2_R_00.02.04.3. The vulnerability allows a remote, authenticated attacker to delete arbitrary files on the device’s disk via the admin/services/packages/remove action. Affected software: Teltonika firmware TRB2_R_00.02.04....

8.5CVSS6.3AI score0.01669EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2020/10/01 7:43 p.m.45 views

CVE-2020-5785

CVE-2020-5785 affects Teltonika firmware TRB2_R_00.02.04.3, with insufficient output sanitization enabling a reflected cross-site scripting attack via crafted parameters action or pkg_name. The vulnerability is listed across multiple sources (NVD, Red Hat, CVE listings) and describes an unauthent...

6.1CVSS5.9AI score0.00742EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2020/10/01 7:41 p.m.47 views

CVE-2020-5786

CVE-2020-5786: A cross-site request forgery in Teltonika firmware TRB2_R_00.02.04.3 lets a remote attacker trick authenticated users into performing sensitive application actions through a crafted link. The consolidated documents confirm the affected product/firmware version and the CSRF nature o...

8.8CVSS8.4AI score0.08804EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder