CVE-2020-5685: OS Command Injection
First published: Wed Jan 13 2021(Updated: )
UNIVERGE SV9500 series from V1 to V7and SV8500 series from S6 to S8 allows an attacker to execute arbitrary OS commands or cause a denial-of-service (DoS) condition by sending a specially crafted request to a specific URL.
Credit: vultures@jpcert.or.jp
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Nec Univerge Sv9500 Firmware | >=v1<=v7 | |
| Nec Univerge Sv9500 | ||
| Nec Univerge Sv8500 Firmware | >=s6<=s8 | |
| Nec Univerge Sv8500 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2020-5685.
What is the title of this vulnerability?
The title of this vulnerability is 'UNIVERGE SV9500 series from V1 to V7and SV8500 series from S6 to S8 allows an attacker to execute arbitrary OS commands or cause a denial-of-service (DoS) condition by sending a specially crafted request to a specific URL.'
What is the severity of CVE-2020-5685?
The severity of CVE-2020-5685 is critical with a CVSS score of 9.8.
Which software versions are affected by CVE-2020-5685?
The UNIVERGE SV9500 series from V1 to V7 and SV8500 series from S6 to S8 are affected by CVE-2020-5685.
How can an attacker exploit this vulnerability?
An attacker can exploit CVE-2020-5685 by sending a specially crafted request to a specific URL, which allows them to execute arbitrary OS commands or cause a denial-of-service (DoS) condition.
- collector/nvd-index
- agent/references
- agent/type
- vendor/nec
- canonical/nec univerge sv9500 firmware
- version/nec univerge sv9500 firmware/v1
- version/nec univerge sv9500 firmware/v7
- canonical/nec univerge sv9500
- canonical/nec univerge sv8500 firmware
- version/nec univerge sv8500 firmware/s6
- version/nec univerge sv8500 firmware/s8
- canonical/nec univerge sv8500