Unrated severityNVD Advisory· Published Oct 11, 2021· Updated Aug 3, 2024

CVE-2021-20122

Description

The Telus Wi-Fi Hub (PRV65B444A-S-TS) with firmware version 3.00.20 is affected by an authenticated command injection vulnerability in multiple parameters passed to tr69_cmd.cgi. A remote attacker connected to the router's LAN and authenticated with a super user account, or using a bypass authentication vulnerability like CVE-2021-20090 could leverage this issue to run commands or gain a shell as root on the target device.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Telus/Telus Wi-Fi Hubdescription
Telus/Wi-Fi Hub PRV65B444A-S-TSllm-create
Range: =3.00.20

Patches

Vulnerability mechanics

References

www.tenable.com/security/research/tra-2021-41mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.005
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000