Vulnerability Details CVE-2020-12843
ismartgate PRO 1.5.9 is vulnerable to malicious file uploads via the form for uploading sounds to garage doors. The magic bytes for WAV must be used.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 65.8%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2020-12843
-
cpe:2.3:h:gogogate:ismartgate_pro:-
-
cpe:2.3:o:gogogate:ismartgate_pro_firmware:1.5.9