CVE-2020-23161

moderate-risk
Published 2021-01-26

Local file inclusion in Pyrescom Termod4 time management devices before 10.04k allows authenticated remote attackers to traverse directories and read sensitive files via the Maintenance > Logs menu and manipulating the file-path in the URL.

Do I need to act?

-
0.61% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
6
CVSS 6.5/10 Medium
NETWORK / LOW complexity

Affected Products (1)

Affected Vendors

Pyres

References (6)

Exploit https://github.com/Outpost24/Pyrescom-Termod-PoC
Exploit https://outpost24.com/blog/multiple-vulnerabilities-discovered-in-Pyrescom-Termo...
Product https://pyres.com/en/solutions/termod-4/
Exploit https://github.com/Outpost24/Pyrescom-Termod-PoC
Exploit https://outpost24.com/blog/multiple-vulnerabilities-discovered-in-Pyrescom-Termo...
Product https://pyres.com/en/solutions/termod-4/
31
/ 100
moderate-risk
Severity 24/34 · High
Exploitability 2/34 · Minimal
Exposure 5/34 · Minimal