Details of VAR-202006-1885

ID

VAR-202006-1885

CVE

CVE-2020-14003

TITLE

Mimosa Routers unauthorized RCE vulnerability

Trust: 0.6

sources: CNVD: CNVD-2021-14833

DESCRIPTION

Mimosa Networks is a global technology leader in wireless broadband solutions, providing fast fiber optic connections for global service providers and corporate, industrial and government operators. Mimosa Routers has an unauthorized RCE vulnerability. Attackers can use this vulnerability to execute arbitrary commands on the target device with root privileges.

Trust: 0.6

sources: CNVD: CNVD-2021-14833

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2021-14833

AFFECTED PRODUCTS

vendor:	mimosa	model:	networks c5c ca8c8e1	scope:	-	version:	-	Trust: 0.6
vendor:	mimosa	model:	networks b5 b84c680	scope:	-	version:	-	Trust: 0.6
vendor:	mimosa	model:	networks b5-lite b84c680	scope:	-	version:	-	Trust: 0.6
vendor:	mimosa	model:	networks b5c b84c680	scope:	-	version:	-	Trust: 0.6
vendor:	mimosa	model:	networks b11 b84c680	scope:	-	version:	-	Trust: 0.6
vendor:	mimosa	model:	networks b24	scope:	eq	version:	1070089	Trust: 0.6
vendor:	mimosa	model:	networks c5 cc51495	scope:	-	version:	-	Trust: 0.6

sources: CNVD: CNVD-2021-14833

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2021-14833
value:	HIGH
Trust: 0.6

CNVD:	CNVD-2021-14833
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2021-14833

PATCH

title:

Mimosa Routers unauthorized patches for RCE vulnerabilities

url:

https://www.cnvd.org.cn/patchinfo/show/251341

Trust: 0.6

sources: CNVD: CNVD-2021-14833

EXTERNAL IDS

db:	SEEBUG	id:	SSVID-98259	Trust: 0.6
db:	NVD	id:	CVE-2020-14003	Trust: 0.6
db:	CNVD	id:	CNVD-2021-14833	Trust: 0.6

sources: CNVD: CNVD-2021-14833

REFERENCES

url:	https://ssd-disclosure.com/ssd-advisory-mimosa-routers-privilege-escalat	Trust: 0.6
url:	https://www.seebug.org/vuldb/ssvid-98259	Trust: 0.6
url:	https://www.zoomeye.org/searchresult?q=mimosa	Trust: 0.6

sources: CNVD: CNVD-2021-14833

SOURCES

db:

CNVD

id:

CNVD-2021-14833

LAST UPDATE DATE

2022-05-04T10:07:31.665000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2021-14833

date:

2021-03-08T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2021-14833

date:

2020-06-29T00:00:00