PT-2020-6345 · Unknown+2 · Wiser Series Gateways+2

Published

2020-10-13

Updated

2020-12-08

CVE-2020-7548

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Smartlink, PowerTag, and Wiser Series Gateways (affected versions not specified)

Description A vulnerability exists in the communication interface for modular equipment that is related to the use of insufficiently random values. This could allow unauthorized users to login. The exploitation of this vulnerability may allow a remote attacker to gain access.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Use of Insufficiently Random Values

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-330

Related Identifiers

BDU:2021-04258

CVE-2020-7548

Affected Products

Powertag

Smartlink

Wiser Series Gateways

PT-2020-6345 · Unknown+2 · Wiser Series Gateways+2

CVE-2020-7548

Weakness Enumeration

Related Identifiers

Affected Products

References · 9