← Back to CVEs
CVE-2018-11240
N/ADescription
An issue was discovered on SoftCase T-Router build 20112017 devices. There are no restrictions on the 'exec command' feature of the T-Router protocol. If the command syntax is correct, there is code execution both on the other modem and on the main servers. This is fixed in production builds as of Spring 2018.
CVE Details
CVSS v3.1 ScoreN/A
Published9/21/2018
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
softcase:t-routersoftcase:t-router_firmware
Weaknesses (CWE)
CWE-732
References
https://gist.github.com/neolead/1b90d8df7ef4fd1d3d03c1265e5804ac#file-cve-2018-11240-txt(cve@mitre.org)
https://gist.github.com/neolead/1b90d8df7ef4fd1d3d03c1265e5804ac#file-cve-2018-11240-txt(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.