CVE-2020-5784: SSRF
First published: Thu Oct 01 2020(Updated: )
Server-Side Request Forgery in Teltonika firmware TRB2_R_00.02.04.3 allows a low privileged user to cause the application to perform HTTP GET requests to arbitrary URLs.
Credit: vulnreport@tenable.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Teltonika-networks Trb245 Firmware | =00.02.04.03 | |
| Teltonika-networks Trb245 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2020-5784?
CVE-2020-5784 refers to the Server-Side Request Forgery vulnerability found in Teltonika firmware TRB2_R_00.02.04.3.
How severe is CVE-2020-5784?
CVE-2020-5784 has a severity score of 6.5, which is considered medium.
How does CVE-2020-5784 affect Teltonika firmware TRB2_R_00.02.04.3?
CVE-2020-5784 allows a low privileged user to cause the application to perform HTTP GET requests to arbitrary URLs in Teltonika firmware TRB2_R_00.02.04.3.
Is Teltonika firmware TRB245 affected by CVE-2020-5784?
No, Teltonika firmware TRB245 is not affected by CVE-2020-5784.
How can I fix CVE-2020-5784 in Teltonika firmware TRB2_R_00.02.04.3?
To fix CVE-2020-5784 in Teltonika firmware TRB2_R_00.02.04.3, it is recommended to update to a patched version provided by Teltonika Networks.
- collector/nvd-index
- agent/severity
- agent/author
- agent/references
- agent/weakness
- agent/tags
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- vendor/teltonika-networks
- canonical/teltonika-networks trb245 firmware
- version/teltonika-networks trb245 firmware/00.02.04.03
- canonical/teltonika-networks trb245