Description

The Telus Wi-Fi Hub (PRV65B444A-S-TS) with firmware version 3.00.20 is affected by an authenticated command injection vulnerability in multiple parameters passed to tr69_cmd.cgi. A remote attacker connected to the router's LAN and authenticated with a super user account, or using a bypass authentication vulnerability like CVE-2021-20090 could leverage this issue to run commands or gain a shell as root on the target device.

Related CPE's

o

telus

prv65b444a-s-ts_firmware

3.00.20

Vulnerable

h

telus

prv65b444a-s-ts

-

References

https://www.tenable.com/security/research/tra-2021-41

ExploitThird Party Advisory

Weaknesses

[email protected]

Primary
CWE-78

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

7.2 · High

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2021-10-11T17:15:07.497

3 years ago

Last modified

2022-06-28T14:11:45.273

3 years ago