CVE-2018-17932
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2018-17932
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
JUUKO K-800 (Firmware versions prior to numbers ending ...9A, ...9B, ...9C, etc.) is vulnerable to a replay attack and command forgery, which could allow attackers to replay commands, control the device, view commands, or cause the device to stop running.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
使用捕获-重放进行的认证绕过
Source: NVD (National Vulnerability Database)
Vulnerability Title
SHUN HU JUUKO Industrial Radio Remote Control 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
SHUN HU JUUKO Industrial Radio Remote Control是中国SHUN HU公司的一款应用于工业控制的无线电遥控器设备。该产品用于建筑领域,或与工业吊装设备,液压起重机,混凝土泵送,生态排水,钻探和工业自动化结合使用。 SHUN HU Technology Co., Ltd JUUKO Industrial Radio Remote Control K-800 工控设备存在安全漏洞,该漏洞源于 K-800 容易受到重放攻击和命令伪造,攻击者可利用该漏洞可以重放命令、控制设
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | JUUKO K-800 | Firmware versions prior to numbers ending ...9A, ...9B, ...9C, etc. | - |
II. Public POCs for CVE-2018-17932
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2018-17932
请登录查看更多情报信息。
- https://us-cert.cisa.gov/ics/advisories/icsa-20-301-01x_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2018-17932
Same Patch Batch · n/a · 2020-11-02 · 12 CVEs total
| CVE-2020-7758 | 7.5 HIGH | Path Traversal |
| CVE-2020-7757 | 6.5 MEDIUM | Path Traversal |
| CVE-2020-26939 | Bouncy Castle BC和Bouncy Castle 安全漏洞 | |
| CVE-2020-23868 | NeDi Consulting NeDi 跨站脚本漏洞 | |
| CVE-2020-23989 | NeDi Consulting NeDi 跨站脚本漏洞 | |
| CVE-2020-23639 | Moxa VPort 461 Series 命令注入漏洞 | |
| CVE-2020-9368 | PrestaShop 路径遍历漏洞 | |
| CVE-2020-14425 | Foxit Reader 命令注入漏洞 | |
| CVE-2020-10937 | IPFS 安全漏洞 | |
| CVE-2018-19025 | SHUN HU JUUKO Industrial Radio Remote Control 安全漏洞 | |
| CVE-2020-24881 | Enhancesoft osTicket 代码问题漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8276
bettercap MySQL Server mysql_server.go integer coercion - CVE-2026-8275
bettercap zerogod IPP Service zerogod_ipp_primitives.go ippR - CVE-2026-8270
Open5GS SMF ogs_nas_parse_qos_rules denial of service - CVE-2026-8269
Open5GS SMF smf_nsmf_handle_create_sm_context denial of serv - CVE-2026-8268
Open5GS SMF OpenAPI_list_create denial of service
Same weakness: CWE-294
- CVE-2026-41351
OpenClaw < 2026.3.31 - Webhook Replay Detection Bypass via B - CVE-2026-35618
OpenClaw < 2026.3.23 - Replay Identity Drift via Query-Only - CVE-2026-34209
mppx: Tempo has a session close voucher bypass vulnerability - CVE-2026-32987
OpenClaw < 2026.3.13 - Bootstrap Setup Code Replay via Devic - CVE-2026-27855
Open-Xchange OX Dovecot Pro 安全漏洞
V. Comments for CVE-2018-17932
No comments yet