CVE-2020-12107

Severity CVSS v4.0:
Pending analysis
Type:
CWE-78 OS Command Injections
Publication date:
12/08/2020
Last modified:
19/08/2020

Description

The Web portal of the WiFi module of VPNCrypt M10 2.6.5 allows command injection via a text field, which allow full control over this module's Operating System.

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:stengg:vpncrypt_m10_firmware:2.6.5:*:*:*:*:*:*:*
cpe:2.3:h:stengg:vpncrypt_m10:-:*:*:*:*:*:*:*