cbcvebase.
CVE-2020-17485
published 2023-12-16

CVE-2020-17485: A Remote Code Execution vulnerability exist in Uffizio's GPS Tracker all versions. The web server can be compromised by uploading and executing a web/reverse…

PriorityP263critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
1.84%
76.3th percentile
A Remote Code Execution vulnerability exist in Uffizio's GPS Tracker all versions. The web server can be compromised by uploading and executing a web/reverse shell. An attacker could then run commands, browse system files, and browse local resources

Detection & IOCsextracted from sources · hover to see the quote

port9000
  • Monitor for unrestricted file upload attempts to the Uffizio GPS Tracker web server, particularly uploads of web shells or reverse shells, which could indicate exploitation of CVE-2020-17485.
  • Monitor HTTP requests to port 9000 on Uffizio GPS Tracker hosts for unauthorized access; JSON responses from this port may indicate information disclosure (CVE-2020-17483) and could be a precursor to CVE-2020-17485 exploitation.
  • ·No vendor-supplied mitigations or workarounds are available; Uffizio has not patched any version of the GPS Tracker software as of the advisory date.
  • ·All versions of the GPS Tracker software are affected; there is no safe version to upgrade to.
  • ·No known public exploits specifically targeting CVE-2020-17485 were identified at the time of the advisory.
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.