What the vulnerability does

01Description

In JUUKO K-808, an attacker could specially craft a packet that encodes an arbitrary command, which could be executed on the K-808 (Firmware versions prior to numbers ending ...9A, ...9B, ...9C, etc.).

Key dates

02Disclosure timeline

November 2, 2020 CVE published
August 5, 2024 Record updated