Vulnerability Description
AVB MOTU devices through 2020-01-22 allow /.. Directory Traversal, as demonstrated by reading the /etc/passwd file.
CVSS Score
7.5
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Motu | Avb Firmware | <= 2020-01-22 |
| Motu | 112D | - |
| Motu | 1248 | - |
| Motu | 16A | - |
| Motu | 24Ai | - |
| Motu | 24Ao | - |
| Motu | 624 | - |
| Motu | 828Es | - |
| Motu | 828X | - |
| Motu | 8A | - |
| Motu | 8D | - |
| Motu | 8M | - |
| Motu | 8Pre-Es | - |
| Motu | Avb | - |
| Motu | Lp32 | - |
| Motu | M64 | - |
| Motu | Monitor 8 | - |
| Motu | Moto Avb Switch | - |
| Motu | Stage-B16 | - |
| Motu | Ultralite-Mk4 | - |
Related Weaknesses (CWE)
References
- https://www.securenetworkinc.com/news/2020/1/22/new-vulnerability-motu-avb-direcExploitThird Party Advisory
- https://www.securenetworkinc.com/news/2020/1/22/new-vulnerability-motu-avb-direcExploitThird Party Advisory
FAQ
What is CVE-2020-8009?
CVE-2020-8009 is a vulnerability with a CVSS score of 7.5 (HIGH). AVB MOTU devices through 2020-01-22 allow /.. Directory Traversal, as demonstrated by reading the /etc/passwd file.
How severe is CVE-2020-8009?
CVE-2020-8009 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-8009?
Check the references section above for vendor advisories and patch information. Affected products include: Motu Avb Firmware, Motu 112D, Motu 1248, Motu 16A, Motu 24Ai.