CVE-2020-17456

CRITICAL EXPLOITED IN THE WILD NUCLEI

SEOWON INTECH SLC-130,SLR-120S - RCE

Title source: llm

Description

SEOWON INTECH SLC-130 And SLR-120S devices allow Remote Code Execution via the ipAddr parameter to the system_log.cgi page.

Exploits (3)

exploitdb WORKING POC
by Aryan Chehreghani · pythonremotehardware
https://www.exploit-db.com/exploits/50821
nomisec WORKING POC 4 stars
by Al1ex · remote
https://github.com/Al1ex/CVE-2020-17456

Nuclei Templates (1)

SEOWON INTECH SLC-130 & SLR-120S - Unauthenticated Remote Code Execution
CRITICALby gy741,edoardottt

References (5)

Scores

CVSS v3 9.8
EPSS 0.8941
EPSS Percentile 99.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

VulnCheck KEV 2022-04-12
InTheWild.io 2022-04-17
CWE
CWE-78
Status published
Products (5)
seowonintech/slc-130_firmware
seowonintech/slr-120d42g_firmware
seowonintech/slr-120s42g_firmware
seowonintech/slr-120s_firmware
seowonintech/slr-120t42g_firmware
Published Aug 20, 2020
Tracked Since Feb 18, 2026