MidnightBSD

Advisories for timetoolsltd

CVE-2020-8963 HIGH

TimeTools SC7105 1.0.007, SC9205 1.0.007, SC9705 1.0.007, SR7110 1.0.007, SR9210 1.0.007, SR9750 1.0.007, SR9850 1.0.007, T100 1.0.003, T300 1.0.003, and T550 1.0.003 devices allow remote attackers to execute arbitrary OS commands via shell metacharacters in the t3.cgi srmodel or srtime parameter.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
timetoolsltd sr9210_firmware 1.0.007
timetoolsltd t100_firmware 1.0.003
timetoolsltd sr7110_firmware 1.0.007
timetoolsltd sr9850_firmware 1.0.007
timetoolsltd t300_firmware 1.0.003
timetoolsltd sc7105_firmware 1.0.007
timetoolsltd t550_firmware 1.0.003
timetoolsltd sc9705_firmware 1.0.007
timetoolsltd sr9750_firmware 1.0.007
timetoolsltd sc9205_firmware 1.0.007
CVE-2020-8964 HIGH

TimeTools SC7105 1.0.007, SC9205 1.0.007, SC9705 1.0.007, SR7110 1.0.007, SR9210 1.0.007, SR9750 1.0.007, SR9850 1.0.007, T100 1.0.003, T300 1.0.003, and T550 1.0.003 devices allow remote attackers to bypass authentication by placing t3axs=TiMEtOOlsj7G3xMm52wB in a t3.cgi request, aka a "hardcoded cookie."

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-798,

Products Affected

Vendor Product Version
timetoolsltd sr9210_firmware 1.0.007
timetoolsltd t100_firmware 1.0.003
timetoolsltd sr7110_firmware 1.0.007
timetoolsltd sr9850_firmware 1.0.007
timetoolsltd t300_firmware 1.0.003
timetoolsltd sc7105_firmware 1.0.007
timetoolsltd t550_firmware 1.0.003
timetoolsltd sc9705_firmware 1.0.007
timetoolsltd sr9750_firmware 1.0.007
timetoolsltd sc9205_firmware 1.0.007