Detections
Analytics

CVE-2020-12843

critical

Description

ismartgate PRO 1.5.9 is vulnerable to malicious file uploads via the form for uploading sounds to garage doors. The magic bytes for WAV must be used.

References

https://kth.diva-portal.org/smash/get/diva2:1464458/FULLTEXT01.pdf

https://ismartgate.com/secure-garage-door/

Details

Source: Mitre, NVD

Published: 2020-09-24

Updated: 2024-11-21

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.00518