CVE-2020-27540
CRITICALRostelecom CS-C2SHW 5.0.082.1 - Command Injection
Title source: llmDescription
Bash injection vulnerability and bypass of signature verification in Rostelecom CS-C2SHW 5.0.082.1. The camera reads firmware update configuration from SD card file vc\version.json. fw-sign parameter and from this configuration is directly inserted into a bash command. Firmware update is run automatically if there is special file on the inserted SD card.
References (1)
Core 1
Core References
Exploit, Third Party Advisory x_refsource_misc
https://dil4rd.medium.com/groundhog-day-in-iot-valley-or-5-cves-in-1-camera-7dc1d2864707
Scores
CVSS v3
9.8
EPSS
0.0083
EPSS Percentile
52.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-347
Status
published
Products (1)
company/cs-c2shw_firmware
5.0.082.1
Published
Jan 26, 2021
Tracked Since
Feb 18, 2026