ID
VAR-201901-1693
TITLE
Command Execution Vulnerability in China Telecom Intelligent Gateway Management Platform
Trust: 0.6
DESCRIPTION
China Telecom Group Co., Ltd. is a super-large state-owned communications company in China and a global partner of the Shanghai World Expo. It has been selected as a "Fortune 500 Enterprise" for many years. China Telecom Tianyi Smart Gateway / Tianyi Broadband Home Gateway is a necessary equipment installed by China Telecom for users who purchase telecommunications broadband services. The equipment installation scope covers 33 provinces and cities. There is a vulnerability in command execution in China Telecom's intelligent gateway management platform. An attacker can use the vulnerability to listen to the traffic of the optical cat to connect users, hijack the network, and bounce the root shell to a remote server.
Trust: 0.6
IOT TAXONOMY
| category: | ['IoT'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
| vendor: | telecom group | model: | intelligent gateway management platform | scope: | - | version: | - | Trust: 0.6 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||
|
|
PATCH
| title: | Command Execution Vulnerability in China Telecom Intelligent Gateway Management Platform | url: | https://www.cnvd.org.cn/patchinfo/show/146737 | Trust: 0.6 |
EXTERNAL IDS
| db: | CNVD | id: | CNVD-2018-26848 | Trust: 0.6 |
SOURCES
| db: | CNVD | id: | CNVD-2018-26848 |
LAST UPDATE DATE
2022-05-04T10:04:05.234000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2018-26848 | date: | 2019-05-07T00:00:00 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2018-26848 | date: | 2019-01-21T00:00:00 |