CVE-2020-5685

Name of the Vulnerable Software and Affected Versions: UNIVERGE SV9500 series from V1 to V7 UNIVERGE SV8500 series from S6 to S8

Description: The issue allows an attacker to execute arbitrary OS commands or cause a denial-of-service (DoS) condition by sending a specially crafted request to a specific URL.

Recommendations: For UNIVERGE SV9500 series from V1 to V7, restrict access to the specific URL to minimize the risk of exploitation. For UNIVERGE SV8500 series from S6 to S8, consider implementing additional security measures to prevent specially crafted requests from being processed. At the moment, there is no information about a newer version that contains a fix for this vulnerability.