Internet Box 3 Firmware
Approved changes feed: RSS · Atom
cpe:2.3:o:swisscom:internet-box_3_firmware:*:*:*:*:*:*:*:*
part: o version: * update: *
| Vendor | Swisscom (af590ee4-58a7-554d-a393-d3d4a03249ab) |
|---|---|
| Product | Internet Box 3 Firmware (707300bf-b986-5d39-b4ad-9f19ab2ba819) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2020-16134 |
vulnerable | 2026-06-03 14:41:47.201298 |
Details available
An issue was discovered on Swisscom Internet Box 2, Internet Box Standard, Internet Box Plus prior to 10.04.38, Internet Box 3 prior to 11.01.20, and Internet Box light prior to 08.06.06. Given the (user-configurable) credentials for the local Web interface or physical access to a device's plus or reset button, an attacker can create a user with elevated privileges on the Sysbus-API. This can then be used to modify local or remote SSH access, thus allowing a login session as the superuser.
Published: 2020-08-04T18:49:12.000Z
Updated: 2024-08-04T13:37:53.422Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.