A vulnerability in OPTILINK OP-XT71000N Hardware Version: V2.2 , Firmware Version: OP_V3.3.1-191028 allows an attacker to upload arbitrary files through " /mgm_dev_upgrade.asp " which can "delete every file for Denial of Service (using 'rm -rf *.*' in the code), reverse connection (using '.asp' webshell), backdoor.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/huzaifahussain98/CVE-2020-23591 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-11-23T00:00:00
Updated: 2024-08-04T14:58:15.000Z
Reserved: 2020-08-13T00:00:00
Link: CVE-2020-23591
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-11-23T02:15:09.413
Modified: 2022-11-23T20:53:41.470
Link: CVE-2020-23591
Redhat
No data.