CVE-2020-3924
6.4MEDIUMDVR firmware in TAT-76 and TAT-77 series of products, provided by TONNET do not properly verify patch files. Attackers can inject a specific command into a patch file and gain access to the system.
Опубликовано: 2/27/2020Обновлено: 11/21/2024
Описание
DVR firmware in TAT-76 and TAT-77 series of products, provided by TONNET do not properly verify patch files. Attackers can inject a specific command into a patch file and gain access to the system.
ИИ-АнализНа базе ИИ
Затронутые продукты
tonnettat-77104g1_firmware
tonnettat-77104g1
-
tonnettat-70432n_firmware
tonnettat-70432n
-
tonnettat-71416g1_firmware
tonnettat-71416g1
-
tonnettat-71832g1_firmware
tonnettat-71832g1
-
tonnettat-76104g3_firmware
tonnettat-76104g3
-
tonnettat-76108g3_firmware
tonnettat-76108g3
-
tonnettat-76116g3_firmware
tonnettat-76116g3
-
tonnettat-76132g3_firmware
tonnettat-76132g3
-
Ссылки
- https://tvn.twcert.org.tw/taiwanvn/TVN-201910004Third Party Advisory
- https://www.chtsecurity.com/news/4ef5eb3a-fdc3-4d78-8dd7-ec7213e2bbcfThird Party Advisory
- https://tvn.twcert.org.tw/taiwanvn/TVN-201910004Third Party Advisory
- https://www.chtsecurity.com/news/4ef5eb3a-fdc3-4d78-8dd7-ec7213e2bbcfThird Party Advisory