High severity8.8NVD Advisory· Published Nov 4, 2020· Updated Jun 17, 2026
CVE-2020-27692
CVE-2020-27692
Description
The Relish (Verve Connect) VH510 device with firmware before 1.0.1.6L0516 contains multiple CSRF vulnerabilities within its web management portal. Attackers can, for example, use this to update the TR-069 configuration server settings (responsible for managing devices remotely). This makes it possible to remotely reboot the device or upload malicious firmware.
Affected products
2- Relish (Verve Connect)/VH510description
Patches
Vulnerability mechanics
References
2- 6point6.co.uk/wp-content/uploads/2020/10/Relish-4G-VH510-Hub-Full-Disclosure-v1.3.pdfnvdExploitThird Party Advisory
- 6point6.co.uk/insights/security-advisory-relish-4g-hub-vh510/nvdThird Party Advisory
News mentions
0No linked articles in our index yet.