CVE-2020-27692

The Relish (Verve Connect) VH510 device with firmware before 1.0.1.6L0516 contains multiple CSRF vulnerabilities within its web management portal. Attackers can, for example, use this to update the TR-069 configuration server settings (responsible for managing devices remotely). This makes it possible to remotely reboot the device or upload malicious firmware.
Configurations

Configuration 1


Information

Published : 2020-11-04 09:15

Updated : 2020-11-10 05:12


NVD link : CVE-2020-27692

Mitre link : CVE-2020-27692

Products Affected
No products.
CWE