CVE-2020-24054

Name of the Vulnerable Software and Affected Versions Moog EXO Series versions (affected versions not specified)

Description The administration console of the Moog EXO Series units has a feature that allows spawning a process repeatedly at a certain time interval as 'root'. This feature can be exploited by using special shell variables, such as ${IFS}, to execute arbitrary commands as 'root' on the units.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.