CVE-2019-14920

2020-01-0916:24:46

mitre

www.cve.org

AI Score

8.8

Confidence

High

EPSS

0.001

Percentile

44.1%

JSON

Billion Smart Energy Router SG600R2 Firmware v3.02.rc6 allows an authenticated attacker to gain root execution privileges over the device via a hidden etc_ro/web/adm/system_command.asp shell feature.

References

github.com/InnotecSystem/Device-Reversing/wiki/Firmware-Inspection