cve/CVE-2020-16259.md at e67cd2fdb0a3b693c8a19c46acadbde4fe3ee9dd

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-12-18 20:48:19 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

643 B

Raw Blame History

CVE-2020-16259

Description

Winston 1.5.4 devices have an SSH user account with access from bastion hosts. This is undocumented in device documents and is not announced to the user.

POC

Reference

https://labs.bishopfox.com/advisories/winston-privacy-version-1.5.4

Github

No PoCs found on GitHub currently.

643 B Raw Blame History

CVE-2020-16259

Description

POC

Reference

Github

643 B

Raw Blame History