An issue was discovered on Spirent TestCenter and Avalanche appliance admin interface firmware. An attacker, who already has access to an SSH restricted shell, can achieve root access via shell metacharacters. The attacker can then, for example, read sensitive files such as appliance admin configuration source code. This affects Spirent TestCenter and Avalanche products which chassis version <= 5.08. The SSH restricted shell is available with default credentials.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2020-08-13T13:59:56
Updated: 2024-08-04T11:41:58.134Z
Reserved: 2020-04-13T00:00:00
Link: CVE-2020-11733
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-08-13T14:15:20.377
Modified: 2021-07-21T11:39:23.747
Link: CVE-2020-11733
Redhat
No data.