CVE-2020-27540

EPSS 0.20% · P42 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-27540

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Bash injection vulnerability and bypass of signature verification in Rostelecom CS-C2SHW 5.0.082.1. The camera reads firmware update configuration from SD card file vc\version.json. fw-sign parameter and from this configuration is directly inserted into a bash command. Firmware update is run automatically if there is special file on the inserted SD card.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Rostelecom CS-C2SHW 数据伪造问题漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Rostelecom CS-C2SHW 5.0.082.1 存在数据伪造问题漏洞，该漏洞源于如果插入的SD卡上有特殊文件，固件更新将自动运行。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2020-27540

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-27540

请登录查看更多情报信息。

Same Patch Batch · n/a · 2021-01-25 · 32 CVEs total

CVE-2020-35854		Textpattern 跨站脚本漏洞
CVE-2020-27542		Rostelecom CS-CSHW 命令注入漏洞
CVE-2020-27541		Rostelecom CS-C2SHW 缓冲区错误漏洞
CVE-2020-27539		Rostelecom CS-CSHW 缓冲区错误漏洞
CVE-2020-35845		FastStone Image Viewer 缓冲区错误漏洞
CVE-2020-35844		FastStone Image Viewer 缓冲区错误漏洞
CVE-2020-35843		FastStone Image Viewer 缓冲区错误漏洞
CVE-2020-27814		OpenJPEG 代码问题漏洞
CVE-2020-25737		Hackolade 安全漏洞
CVE-2021-22698		Schneider Electric EcoStruxure Power Build - Rapsody 代码问题漏洞
CVE-2021-22697		Schneider Electric EcoStruxure Power Build - Rapsody 代码问题漏洞
CVE-2020-28221		Opera Software Opera 输入验证错误漏洞
CVE-2020-0236		Google Android 缓冲区错误漏洞
CVE-2021-3185		gst-plugins-bad 安全漏洞
CVE-2020-35513		Linux Kernel NFS 安全漏洞
CVE-2021-3278		Local Service Search Engine Management System SQL注入漏洞
CVE-2020-35576		TP-LINK TL-WR841N 操作系统命令注入漏洞
CVE-2020-35853		4images Image Gallery Management System 跨站脚本漏洞
CVE-2020-35270		Projectnotes Student Result Management System SQL注入漏洞
CVE-2020-36221		OpenLDAP 数字错误漏洞

Showing top 20 of 32 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2020-27540

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2020-27540

I. Basic Information for CVE-2020-27540

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-27540

III. Intelligence Information for CVE-2020-27540

Same Patch Batch · n/a · 2021-01-25 · 32 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2020-27540

Leave a comment