VDB-165228 · CVE-2020-25185 · icsa-20-324-02

Paradox IP150 5.02.09 buffer overflow

Une vulnérabilité classée critique a été trouvée dans Paradox IP150 5.02.09. Affecté est une fonction inconnue. Il n'y a aucune information à propos de possibles contremesures connues. Il est suggéré de remplacer l'object infecté par un produit alternatif.

Domaine	21/11/2020 17:06	09/12/2020 19:16	09/12/2020 19:20
vendor	Paradox	Paradox	Paradox
name	IP150	IP150	IP150
version	5.02.09	5.02.09	5.02.09
cwe	120 (buffer overflow)	120 (buffer overflow)	120 (buffer overflow)
risk	2	2	2
cvss3_vuldb_av	N	N	N
cvss3_vuldb_ac	L	L	L
cvss3_vuldb_pr	L	L	L
cvss3_vuldb_ui	N	N	N
cvss3_vuldb_s	U	U	U
cvss3_vuldb_c	L	L	L
cvss3_vuldb_i	L	L	L
cvss3_vuldb_a	L	L	L
identifier	icsa-20-324-02	icsa-20-324-02	icsa-20-324-02
url	https://us-cert.cisa.gov/ics/advisories/icsa-20-324-02	https://us-cert.cisa.gov/ics/advisories/icsa-20-324-02	https://us-cert.cisa.gov/ics/advisories/icsa-20-324-02
cve	CVE-2020-25185	CVE-2020-25185	CVE-2020-25185
date	1605913200 (21/11/2020)	1605913200 (21/11/2020)	1605913200 (21/11/2020)
cvss2_vuldb_av	N	N	N
cvss2_vuldb_ac	L	L	L
cvss2_vuldb_ci	P	P	P
cvss2_vuldb_ii	P	P	P
cvss2_vuldb_ai	P	P	P
cvss2_vuldb_au	S	S	S
cvss2_vuldb_e	ND	ND	ND
cvss2_vuldb_rl	ND	ND	ND
cvss2_vuldb_rc	ND	ND	ND
cvss3_vuldb_e	X	X	X
cvss3_vuldb_rl	X	X	X
cvss3_vuldb_rc	X	X	X
cvss2_vuldb_basescore	6.5	6.5	6.5
cvss2_vuldb_tempscore	6.5	6.5	6.5
cvss3_vuldb_basescore	6.3	6.3	6.3
cvss3_vuldb_tempscore	6.3	6.3	6.3
cvss3_meta_basescore	6.3	6.3	7.5
cvss3_meta_tempscore	6.3	6.3	7.5
price_0day	$0-$5k	$0-$5k	$0-$5k
cve_assigned		1599170400 (04/09/2020)	1599170400 (04/09/2020)
cve_nvd_summary		The affected product is vulnerable to five post-authentication buffer overflows, which may allow a logged in user to remotely execute arbitrary code on the IP150 (firmware versions 5.02.09).	The affected product is vulnerable to five post-authentication buffer overflows, which may allow a logged in user to remotely execute arbitrary code on the IP150 (firmware versions 5.02.09).
cvss3_nvd_av			N
cvss3_nvd_ac			L
cvss3_nvd_pr			L
cvss3_nvd_ui			N
cvss3_nvd_s			U
cvss3_nvd_c			H
cvss3_nvd_i			H
cvss3_nvd_a			H
cvss2_nvd_av			N
cvss2_nvd_ac			L
cvss2_nvd_au			S
cvss2_nvd_ci			P
cvss2_nvd_ii			P
cvss2_nvd_ai			P
cvss2_nvd_basescore			6.5
cvss3_nvd_basescore			8.8

◂ Précédent Aperçu Suivant ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!