Home
CRITICAL: 10.0 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:HDefault status
unaffected
0.0.0 (semver) before V1.2.1.S0
affected
Default status
unaffected
0.0.0 (semver) before V1.2.1.S0
affected
Default status
unaffected
0.0.0 (semver) before V1.2.3.S0
affected
Default status
unaffected
0.0.0 (semver) before V1.2.1.S0
affected
Default status
unaffected
0.0.0 (semver) before V1.2.8.S0
affected
Default status
unaffected
0.0.0 (semver) before V1.2.0.S0
affected
Default status
unaffected
0.0.0 (semver) before V1.2.0.S0
affected
Default status
unaffected
0.0.0 (semver) before V1.2.0.S0
affected
Default status
unaffected
0.0.0 (semver) before V1.1.9.S0
affected
Default status
unaffected
0.0.0 (semver) before V1.0.6.S0
affected
Default status
unaffected
0.0.0 (semver) before V1.0.6.S0
affected
Default status
unaffected
0.0.0 (semver) before V1.2.5.S0
affected
Default status
unaffected
0.0.0 (semver) before V1.2.1.S0
affected
Default status
unaffected
0.0.0 (semver) before V1.2.1.S0
affected
Default status
unaffected
0.0.0 (semver) before V1.2.1.S0
affected
Default status
unaffected
0.0.0 (semver) before V1.2.1.S0
affected
Description
An unauthenticated remote attacker can exploit a hidden function in the CLI prompt to escape the restricted interface, leading to full compromise of the device.
Problem types
Product status
0.0.0 (semver) before V1.2.1.S0
0.0.0 (semver) before V1.2.1.S0
0.0.0 (semver) before V1.2.3.S0
0.0.0 (semver) before V1.2.1.S0
0.0.0 (semver) before V1.2.8.S0
0.0.0 (semver) before V1.2.0.S0
0.0.0 (semver) before V1.2.0.S0
0.0.0 (semver) before V1.2.0.S0
0.0.0 (semver) before V1.1.9.S0
0.0.0 (semver) before V1.0.6.S0
0.0.0 (semver) before V1.0.6.S0
0.0.0 (semver) before V1.2.5.S0
0.0.0 (semver) before V1.2.1.S0
0.0.0 (semver) before V1.2.1.S0
0.0.0 (semver) before V1.2.1.S0
0.0.0 (semver) before V1.2.1.S0
References
certvde.com/de/advisories/VDE-2026-020