CVE-2020-15058

HIGH

Lindy 42633 - Privilege Escalation

Title source: llm

Description

Lindy 42633 4-Port USB 2.0 Gigabit Network Server 2.078.000 devices allow an attacker on the same network to elevate privileges because the administrative password can be discovered by sniffing unencrypted UDP traffic.

References (1)

[Broken Link, Third Party Advisory] https://research.hisolutions.com/2020/05/critical-vulnerabilites-in-multiple-usb-network-servers/

Scores

CVSS v3 8.8

EPSS 0.0005

EPSS Percentile 14.1%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-319 CWE-522

Status published

Affected Products (1)

lindy-international/42633_firmware

Timeline

Published Aug 07, 2020

Tracked Since Feb 18, 2026