CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-9475

The S. Siedle & Soehne SG 150-0 Smart Gateway before 1.2.4 allows local privilege escalation via a race condition in logrotate. By using an exploit chain, an attacker with access to the network can get root access on the gateway.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 7.5%

CVSS Severity

CVSS v3 Score 7.0

CVSS v2 Score 6.9

References

https://research.hisolutions.com/2020/04/open-the-gates-insecurity-of-cloudless-smart-door-systems/
https://research.hisolutions.com/2020/04/open-the-gates-insecurity-of-cloudless-smart-door-systems/

Products affected by CVE-2020-9475

Siedle » Sg 150-0 » Version: N/A

cpe:2.3:h:siedle:sg_150-0:-
Siedle » Sg 150-0 Firmware » Version: 1.1.0

cpe:2.3:o:siedle:sg_150-0_firmware:1.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-9475

Products

Pricing

Contact Us