Arbitrary Command Execution Vulnerability in Aterm SA3500G Firmware Versions Prior to Ver. 3.5.9

Arbitrary Command Execution Vulnerability in Aterm SA3500G Firmware Versions Prior to Ver. 3.5.9

CVE-2020-5635 · HIGH Severity

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Aterm SA3500G firmware versions prior to Ver. 3.5.9 allows an attacker on the adjacent network to send a specially crafted request to a specific URL, which may result in an arbitrary command execution.

Learn more about our Network Penetration Testing.