CVE-2020-22159 - Vulnerability Details - OpenCVE

EVERTZ devices 3080IPX exe-guest-v1.2-r26125, 7801FC 1.3 Build 27, and 7890IXG V494 are vulnerable to Arbitrary File Upload, allowing an authenticated attacker to upload a webshell or overwrite any critical system files.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation poc

Automatable no

Technical Impact total

Vendors	Products
Evertz	3080ipx 3080ipx Firmware 7801fc 7801fc Firmware 7890ixg 7890ixg Firmware

Configuration 1 [-]

AND

cpe:2.3:o:evertz:3080ipx_firmware:exe-guest-v1.2-r26125:*:*:*:*:*:*:*

cpe:2.3:h:evertz:3080ipx:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:evertz:7801fc_firmware:1.3:build_27:*:*:*:*:*:*

cpe:2.3:h:evertz:7801fc:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:evertz:7890ixg_firmware:v494:*:*:*:*:*:*:*

cpe:2.3:h:evertz:7890ixg:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://cacharros-inthewild.blogspot.com/2023/07/the-3080ipx-is-integrated-multicast.html
https://sku11army.blogspot.com/2020/02/evertz-path-transversal-arbitrary-file.html

History

Mon, 28 Oct 2024 19:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2023-07-18T00:00:00

Updated: 2024-10-28T18:44:38.524Z

Reserved: 2020-08-13T00:00:00

Link: CVE-2020-22159

Vulnrichment

Updated: 2024-08-04T14:51:10.316Z

NVD

Status : Modified

Published: 2023-07-18T18:15:11.503

Modified: 2024-11-21T05:13:07.770

Link: CVE-2020-22159

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2020-22159", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2024-10-28T18:44:38.524Z", "dateReserved": "2020-08-13T00:00:00", "datePublished": "2023-07-18T00:00:00"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2023-07-18T00:00:00"}, "descriptions": [{"lang": "en", "value": "EVERTZ devices 3080IPX exe-guest-v1.2-r26125, 7801FC 1.3 Build 27, and 7890IXG V494 are vulnerable to Arbitrary File Upload, allowing an authenticated attacker to upload a webshell or overwrite any critical system files."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://sku11army.blogspot.com/2020/02/evertz-path-transversal-arbitrary-file.html"}, {"url": "https://cacharros-inthewild.blogspot.com/2023/07/the-3080ipx-is-integrated-multicast.html"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T14:51:10.316Z"}, "title": "CVE Program Container", "references": [{"url": "https://sku11army.blogspot.com/2020/02/evertz-path-transversal-arbitrary-file.html", "tags": ["x_transferred"]}, {"url": "https://cacharros-inthewild.blogspot.com/2023/07/the-3080ipx-is-integrated-multicast.html", "tags": ["x_transferred"]}]}, {"affected": [{"vendor": "evertz", "product": "3080ipx", "cpes": ["cpe:2.3:h:evertz:3080ipx:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "exe-guest-v1.2-r26125", "status": "affected"}]}, {"vendor": "evertz", "product": "7801fc", "cpes": ["cpe:2.3:h:evertz:7801fc:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "1.3_build_27", "status": "affected"}]}, {"vendor": "evertz", "product": "7890ixg", "cpes": ["cpe:2.3:h:evertz:7890ixg:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "v494", "status": "affected"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-10-28T18:42:30.996801Z", "id": "CVE-2020-22159", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-10-28T18:44:38.524Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://sku11army.blogspot.com/2020/02/evertz-path-transversal-arbitrary-file.html", "tags": ["x_transferred"]}, {"url": "https://cacharros-inthewild.blogspot.com/2023/07/the-3080ipx-is-integrated-multicast.html", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T14:51:10.316Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2020-22159", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-10-28T18:42:30.996801Z"}}}], "affected": [{"cpes": ["cpe:2.3:h:evertz:3080ipx:-:*:*:*:*:*:*:*"], "vendor": "evertz", "product": "3080ipx", "versions": [{"status": "affected", "version": "exe-guest-v1.2-r26125"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:evertz:7801fc:-:*:*:*:*:*:*:*"], "vendor": "evertz", "product": "7801fc", "versions": [{"status": "affected", "version": "1.3_build_27"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:h:evertz:7890ixg:-:*:*:*:*:*:*:*"], "vendor": "evertz", "product": "7890ixg", "versions": [{"status": "affected", "version": "v494"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-10-28T18:44:26.868Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "references": [{"url": "https://sku11army.blogspot.com/2020/02/evertz-path-transversal-arbitrary-file.html"}, {"url": "https://cacharros-inthewild.blogspot.com/2023/07/the-3080ipx-is-integrated-multicast.html"}], "descriptions": [{"lang": "en", "value": "EVERTZ devices 3080IPX exe-guest-v1.2-r26125, 7801FC 1.3 Build 27, and 7890IXG V494 are vulnerable to Arbitrary File Upload, allowing an authenticated attacker to upload a webshell or overwrite any critical system files."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "n/a"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2023-07-18T00:00:00"}}}, "cveMetadata": {"cveId": "CVE-2020-22159", "state": "PUBLISHED", "dateUpdated": "2024-10-28T18:44:38.524Z", "dateReserved": "2020-08-13T00:00:00", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2023-07-18T00:00:00", "assignerShortName": "mitre"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:evertz:3080ipx_firmware:exe-guest-v1.2-r26125:*:*:*:*:*:*:*", "matchCriteriaId": "6AB78AA7-7295-40C6-BE8D-649106E6A1E1", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:evertz:3080ipx:-:*:*:*:*:*:*:*", "matchCriteriaId": "515F7FB9-E566-4EC7-BA27-B812FAEB6C14", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:evertz:7801fc_firmware:1.3:build_27:*:*:*:*:*:*", "matchCriteriaId": "7BA40CD6-6144-4F78-8C75-EE3182A9563C", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:evertz:7801fc:-:*:*:*:*:*:*:*", "matchCriteriaId": "B1F3D40F-17F9-4140-9CB9-DD096431CBB4", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:evertz:7890ixg_firmware:v494:*:*:*:*:*:*:*", "matchCriteriaId": "D788AC07-E6B3-4EC2-9032-EF3EE6F5A0FC", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:evertz:7890ixg:-:*:*:*:*:*:*:*", "matchCriteriaId": "CB82BCE7-6820-4C1A-B158-B8C073092371", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "EVERTZ devices 3080IPX exe-guest-v1.2-r26125, 7801FC 1.3 Build 27, and 7890IXG V494 are vulnerable to Arbitrary File Upload, allowing an authenticated attacker to upload a webshell or overwrite any critical system files."}], "id": "CVE-2020-22159", "lastModified": "2024-11-21T05:13:07.770", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-07-18T18:15:11.503", "references": [{"source": "cve@mitre.org", "tags": ["Exploit"], "url": "https://cacharros-inthewild.blogspot.com/2023/07/the-3080ipx-is-integrated-multicast.html"}, {"source": "cve@mitre.org", "tags": ["Permissions Required"], "url": "https://sku11army.blogspot.com/2020/02/evertz-path-transversal-arbitrary-file.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "https://cacharros-inthewild.blogspot.com/2023/07/the-3080ipx-is-integrated-multicast.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Permissions Required"], "url": "https://sku11army.blogspot.com/2020/02/evertz-path-transversal-arbitrary-file.html"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-434"}], "source": "nvd@nist.gov", "type": "Primary"}]}