CVE-2020-14930

HIGH

BT CTROMS Terminal OS Port Portal CT-464 - Info Disclosure

Title source: llm

Description

An issue was discovered in BT CTROMS Terminal OS Port Portal CT-464. Account takeover can occur because the password-reset feature discloses the verification token. Upon a getverificationcode.jsp request, this token is transmitted not only to the registered phone number of the user account, but is also transmitted to the unauthenticated HTTP client.

Exploits (1)

exploitdb WORKING POC

by AkkuS · textremotelinux

https://www.exploit-db.com/exploits/48196

View Code ZIP pw:eip

References (2)

[Exploit, Third Party Advisory, VDB Entry] https://www.exploit-db.com/exploits/48196

[Exploit, Third Party Advisory] https://www.pentest.com.tr/exploits/CTROMS-Terminal-OS-Port-Portal-Password-Reset-Authentication-Bypass.html

Scores

CVSS v3 8.1

EPSS 0.0582

EPSS Percentile 90.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-319 CWE-522

Status published

Affected Products (1)

bt_ctroms_terminal_project/bt_ctroms_terminal

Timeline

Published Jun 19, 2020

Tracked Since Feb 18, 2026