CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-24057

The management website of the Verint S5120FD Verint_FW_0_42 unit features a CGI endpoint ('ipfilter.cgi') that allows the user to manage network filtering on the unit. This endpoint is vulnerable to a command injection. An authenticated attacker can leverage this issue to execute arbitrary commands as 'root'.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.212

EPSS Ranking 95.4%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 9.0

References

https://ioac.tv/2Nbc40h
https://ioactive.com/verint-ptz-cameras-multiple-vulnerabilities/
https://ioac.tv/2Nbc40h
https://ioactive.com/verint-ptz-cameras-multiple-vulnerabilities/

Products affected by CVE-2020-24057

Verint » S5120fd » Version: N/A

cpe:2.3:h:verint:s5120fd:-
Verint » S5120fd Firmware » Version: verint_fw_0_42

cpe:2.3:o:verint:s5120fd_firmware:verint_fw_0_42

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-24057

Products

Pricing

Contact Us