Unrated severityNVD Advisory· Published Feb 13, 2020· Updated Aug 4, 2024

CVE-2020-8964

Description

TimeTools SC7105 1.0.007, SC9205 1.0.007, SC9705 1.0.007, SR7110 1.0.007, SR9210 1.0.007, SR9750 1.0.007, SR9850 1.0.007, T100 1.0.003, T300 1.0.003, and T550 1.0.003 devices allow remote attackers to bypass authentication by placing t3axs=TiMEtOOlsj7G3xMm52wB in a t3.cgi request, aka a "hardcoded cookie."

Affected products

TimeTools/TimeTools devicesdescription
TimeTools/SC7105llm-create
Range: 1.0.007
TimeTools/SC9205llm-create
Range: 1.0.007
TimeTools/T100llm-create
Range: 1.0.003

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

sku11army.blogspot.com/2020/02/timetools-sr-sc-series-network-time.htmlmitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.003
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000