CVE-2018-17932

Critical

JUUKO K-800 (Firmware versions prior to numbers ending ...9A, ...9B, ...9C, etc.) is vulnerable to a replay attack and command forgery,…

icscert·CWE-294·Published 2020-11-02

CVSS

9.8

EPSS

0.01

KEV

Exploits

cve.orgen

255 chars

JUUKO K-800 (Firmware versions prior to numbers ending ...9A, ...9B, ...9C, etc.) is vulnerable to a replay attack and command forgery, which could allow attackers to replay commands, control the device, view commands, or cause the device to stop running.

NVDen

255 chars

NVDes

323 chars

JUUKO K-800 (Versiones de firmware anteriores a los números que terminen en ... 9A, ... 9B, ... 9C, etc.) es vulnerable a un ataque de repetición y falsificación de comandos, lo que podría permitir a atacantes reproducir comandos y controlar el dispositivo, visualizar comandos o causar que el dispositivo deje de funcionar

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	10.0	10.0	10.0	AV:N/AC:L/Au:N/C:C/I:C/A:C
3.1	Primary	NVD	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H