CVE-2020-9436

CWE-78 — OS Command Injection3 documents3 sources

Severity

8.8HIGH

EPSS

1.2%

top 20.91%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Phoenixcontact TC Cloud Client 1002-4g Firmware Phoenixcontact TC Cloud Client 1002-txtx Firmware Phoenixcontact TC Router 2002t-3g Firmware +3 more

Timeline

PublishedMar 12

Latest updateMay 24

Description

PHOENIX CONTACT TC ROUTER 3002T-4G through 2.05.3, TC ROUTER 2002T-3G through 2.05.3, TC ROUTER 3002T-4G VZW through 2.05.3, TC ROUTER 3002T-4G ATT through 2.05.3, TC CLOUD CLIENT 1002-4G through 2.03.17, and TC CLOUD CLIENT 1002-TXTX through 1.03.17 devices allow authenticated users to inject system commands through a modified POST request to a specific URL.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages6 packages

▶NVDphoenixcontact/tc_router_3002t-4g_firmware2.05.3

▶NVDphoenixcontact/tc_router_3002t-4g_att_firmware2.05.3

▶NVDphoenixcontact/tc_router_3002t-4g_vzw_firmware2.05.3

▶NVDphoenixcontact/tc_cloud_client_1002-txtx_firmware1.03.17

▶NVDphoenixcontact/tc_cloud_client_1002-4g_firmware2.03.17

🔴Vulnerability Details

GHSA

GHSA-2w9g-759j-gvh6: PHOENIX CONTACT TC ROUTER 3002T-4G through 2↗2022-05-24

▶

CVEList

CVE-2020-9436: PHOENIX CONTACT TC ROUTER 3002T-4G through 2↗2020-03-12

▶