CVEブラウザに戻る

CVE-2020-22724

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.0790%

EPSS Percentile23.80th

Published2021年10月14日

Last Modified2024年11月21日

Vulnerability Description

A remote command execution vulnerability exists in add_server_service of PPTP_SERVER in Mercury Router MER1200 v1.0.1 and Mercury Router MER1200G v1.0.1.

Affected Platforms (CPE)

💻

Mercury

Mer1200 Firmware

= 1.0.1

💻

Mercury

Mer1200g Firmware

= 1.0.1

References & Advisories

🔗 https://cwe.mitre.org/data/definitions/78.html

🔗 https://github.com/DarkEyeR/CVE_Apply/blob/master/Mercury/Mercury%20MER1200%20Router%20v1.0.1%20RCE%20%20.md

🔗 https://cwe.mitre.org/data/definitions/78.html

🔗 https://github.com/DarkEyeR/CVE_Apply/blob/master/Mercury/Mercury%20MER1200%20Router%20v1.0.1%20RCE%20%20.md

関連する脆弱性情報

Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Mes...

Allocation of Resources Without Limits or Throttling vulnerability in elixir-grpc grpc allows unauthenticated attackers to exhaust...

Deserialization of Untrusted Data and Allocation of Resources Without Limits or Throttling vulnerabilities in elixir-grpc grpc all...

CVE-2026-487237.8

The browserstack-cypress-cli is BrowserStack's CLI which allows users to run Cypress tests on BrowserStack. Versions prior to 1.36...