CVE-2020-9020

Iteris Vantage Velocity Field Unit 2.3.1, 2.4.2, and 3.0 devices allow the injection of OS commands into cgi-bin/timeconfig.py via shell metacharacters in the NTP Server field.
References
Configurations

Configuration 1


Information

Published : 2020-02-17 04:15

Updated : 2020-02-19 06:36


NVD link : CVE-2020-9020

Mitre link : CVE-2020-9020

Products Affected
No products.
CWE