CVE-2018-20162

CRITICAL

Digi TransPort LR54 <4.4.0.26 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-20162. PoCs published by stigtsp.

AI-analyzed exploit summary This PoC demonstrates a restricted shell escape vulnerability in Digi TransPort LR54 routers by exploiting improper argument handling in the CLI when a Python script receives a SIGINT. It allows an attacker with 'super' privileges to execute arbitrary commands as root.

Description

Digi TransPort LR54 4.4.0.26 and possible earlier devices have Improper Input Validation that allows users with 'super' CLI access privileges to bypass a restricted shell and execute arbitrary commands as root.

Exploits (1)

nomisec WORKING POC
by stigtsp · poc
https://github.com/stigtsp/CVE-2018-20162-digi-lr54-restricted-shell-escape

This PoC demonstrates a restricted shell escape vulnerability in Digi TransPort LR54 routers by exploiting improper argument handling in the CLI when a Python script receives a SIGINT. It allows an attacker with 'super' privileges to execute arbitrary commands as root.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Digi TransPort LR54 (Firmware Version 4.4.0.26 and 4.3.2.24)
Auth required
Prerequisites: Interactive CLI access with 'super' privileges · Ability to upload a Python script to the device
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Mailing List, Third Party Advisory mailing-list x_refsource_bugtraq
https://seclists.org/bugtraq/2019/Feb/34

Scores

CVSS v3 9.9
EPSS 0.0416
EPSS Percentile 89.5%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Details

CWE
CWE-20
Status published
Products (1)
digi/transport_lr54_firmware < 4.4.0.26
Published Mar 21, 2019
Tracked Since Feb 18, 2026