CVE-2020-17456 Scanner
Detects 'Remote Code Execution (RCE)' vulnerability in SEOWON INTECH SLC-130 And SLR-120S affects v. Unknown.
Short Info
Level
Critical
Single Scan
Single Scan
Can be used by
Asset Owner
Estimated Time
10 second
Time Interval
1 month
Scan only one
Domain, Ipv4
Toolbox
-
SEOWON INTECH SLC-130 and SLR-120S devices are widely used for remote monitoring and control systems such as industrial control systems, IoT devices, and smart infrastructure equipment. These devices are known for their reliability and advanced features, including secure data transmission and real-time monitoring. The SEOWON INTECH SLC-130 and SLR-120S devices have been designed to provide easy remote access to critical systems and data, making it an essential device for businesses and organizations where remote accessibility is important.
However, the SEOWON INTECH SLC-130 and SLR-120S devices have recently been found to be vulnerable to a remote code execution flaw, CVE-2020-17456. This vulnerability allows an attacker to execute arbitrary code on the device by exploiting a flaw in the ipAddr parameter used by the system_log.cgi page. This vulnerability is considered critical, as it allows an attacker to gain unauthorized access to the device and extract sensitive information or disrupt the device's operations.
If this vulnerability is successfully exploited, it could lead to severe consequences, including data breaches, system crashes, and unauthorized access to sensitive information. Attackers can use this vulnerability to launch advanced persistent threats, carry out DDoS attacks or steal data. Therefore, it is crucial to take preventive measures to protect your systems from such attacks.
s4e.io is an online platform that provides real-time vulnerability scanning and assessments. By using this platform, users can quickly and easily identify vulnerabilities in their digital assets and take the necessary steps to prevent attacks. It is important to stay ahead of these vulnerabilities and take proactive steps to ensure the security of your digital assets. With the help of s4e.io, users can rest assured that their systems are protected from critical vulnerabilities like the CVE-2020-17456 found in the SEOWON INTECH SLC-130 and SLR-120S devices.
REFERENCES
- http://packetstormsecurity.com/files/158933/Seowon-SlC-130-Router-Remote-Code-Execution.html
- http://packetstormsecurity.com/files/166273/Seowon-SLR-120-Router-Remote-Code-Execution.html
- https://github.com/TAPESH-TEAM/CVE-2020-17456-Seowon-SLR-120S42G-RCE-Exploit-Unauthenticated
- https://maj0rmil4d.github.io/Seowon-SlC-130-And-SLR-120S-Exploit/
- https://www.exploit-db.com/exploits/50821