Company Cs-c2shw Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Company Cs-c2shw Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2020-27539 — CVSS 9.8 (critical): Heap overflow with full parsing of HTTP respose in Rostelecom CS-C2SHW 5.0.082.1. AgentUpdater service has a self-written HTTP parser and…
CVE-2020-27540 — CVSS 9.8 (critical): Bash injection vulnerability and bypass of signature verification in Rostelecom CS-C2SHW 5.0.082.1. The camera reads firmware update…
CVE-2020-27541 — CVSS 7.5 (high): Denial of Service vulnerability in Rostelecom CS-C2SHW 5.0.082.1. AgentGreen service has a bug in parsing broadcast discovery UDP packet…
CVE-2020-27542 — CVSS 6.8 (medium): Rostelecom CS-C2SHW 5.0.082.1 is affected by: Bash command injection. The camera reads configuration from QR code (including network…