Vulnerabilities > CVE-2020-5784 - Server-Side Request Forgery (SSRF) vulnerability in Teltonika-Networks Trb245 Firmware 00.02.04.03

047910
CVSS 6.5 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
NONE
Integrity impact
HIGH
Availability impact
NONE
network
low complexity
teltonika-networks
CWE-918

Summary

Server-Side Request Forgery in Teltonika firmware TRB2_R_00.02.04.3 allows a low privileged user to cause the application to perform HTTP GET requests to arbitrary URLs.

Vulnerable Configurations

Part Description Count
OS
Teltonika-Networks
1
Hardware
Teltonika-Networks
1

Common Weakness Enumeration (CWE)