CVE-2020-18329

Description

An issue was discovered in Rehau devices that use a pCOWeb card BIOS v6.27, BOOT v5.00, web version v2.2, allows attackers to gain full unauthenticated access to the configuration and service interface.

Related CPE's

a carel pcoweb_card_web 2.2 *******

o carel pcoweb_card_boot 5.00 *******

o carel pcoweb_card_bios 6.27 *******

References

https://medium.com/@SergiuSechel/insecure-permissions-in-rehau-group-unlimited-polymer-solutions-implementation-of-carel-pcoweb-514c148ae694

ExploitThird Party Advisory

https://github.com/cybertoxin/CVEs/blob/main/CVE_2020_18329.md

Third Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics

Created by Yello

About Severity.io