CVE-2020-23160

HIGH

Pyrescom Termod4 Firmware < 10.04k - Authenticated Remote Code Execution

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-23160. PoCs published by Outpost24.

AI-analyzed exploit summary This PoC exploits CVE-2020-23160, a remote code execution vulnerability in Pyrescom Termod4 devices. It chains authentication bypass, file read, and command execution flaws to achieve RCE via a Caesar cipher decryption of credentials and a command injection in the CGI interface.

Description

Remote code execution in Pyrescom Termod4 time management devices before 10.04k allows authenticated remote attackers to arbitrary commands as root on the devices.

Exploits (1)

nomisec WORKING POC
by Outpost24 · poc
https://github.com/Outpost24/Pyrescom-Termod-PoC

This PoC exploits CVE-2020-23160, a remote code execution vulnerability in Pyrescom Termod4 devices. It chains authentication bypass, file read, and command execution flaws to achieve RCE via a Caesar cipher decryption of credentials and a command injection in the CGI interface.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Pyrescom Termod4
No auth needed
Prerequisites: Network access to the target device · Web interface exposed
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Product, Vendor Advisory x_refsource_misc
https://pyres.com/en/solutions/termod-4/
Exploit, Third Party Advisory x_refsource_misc
https://github.com/Outpost24/Pyrescom-Termod-PoC
Exploit, Technical Description, Third Party Advisory x_refsource_misc
https://outpost24.com/blog/multiple-vulnerabilities-discovered-in-Pyrescom-Termod4-smart-device

Scores

CVSS v3 8.8
EPSS 0.0693
EPSS Percentile 93.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

Status published
Products (1)
pyres/termod4_firmware < 10.04k
Published Jan 26, 2021
Tracked Since Feb 18, 2026