Vulnerability Details CVE-2020-22007
OS Command Injection vulnerability in OKER G955V1 v1.03.02.20161128, allows physical attackers to interrupt the boot sequence and execute arbitrary commands with root privileges.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 48.2%
CVSS Severity
CVSS v3 Score 6.8
References
- http://www.okerthai.com
- https://gist.github.com/tanprathan/69fbf6fbac11988e12f44069ec5b18ea#file-cve-2020-22007-txt
- https://www.dropbox.com/s/cnzwbxhxl0ahzoa/OKER_UART_2.mp4
- http://www.okerthai.com
- https://gist.github.com/tanprathan/69fbf6fbac11988e12f44069ec5b18ea#file-cve-2020-22007-txt
- https://www.dropbox.com/s/cnzwbxhxl0ahzoa/OKER_UART_2.mp4
Products affected by CVE-2020-22007
-
cpe:2.3:h:okerthai:g955v1:-
-
cpe:2.3:o:okerthai:g955v1_firmware:1.03.02.20161128