CVE-2020-27542

EPSS 0.76% · P73 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-27542

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Rostelecom CS-C2SHW 5.0.082.1 is affected by: Bash command injection. The camera reads configuration from QR code (including network settings). The static IP configuration from QR code is copied to the file /config/ip-static and after reboot data from this file is inserted into bash command (without any escaping). So bash injection is possible. Camera doesn't parse QR codes if it's already successfully configured. Camera is always rebooted after successful configuration via QR code.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Rostelecom CS-CSHW 命令注入漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Rostelecom CS-C2SHW 5.0.082.1 存在安全漏洞，攻击者可利用该漏洞进行bash注入。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2020-27542

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-27542

请登录查看更多情报信息。

Same Patch Batch · n/a · 2021-01-25 · 32 CVEs total

CVE-2020-35854		Textpattern 跨站脚本漏洞
CVE-2020-27541		Rostelecom CS-C2SHW 缓冲区错误漏洞
CVE-2020-27539		Rostelecom CS-CSHW 缓冲区错误漏洞
CVE-2020-27540		Rostelecom CS-C2SHW 数据伪造问题漏洞
CVE-2020-35845		FastStone Image Viewer 缓冲区错误漏洞
CVE-2020-35844		FastStone Image Viewer 缓冲区错误漏洞
CVE-2020-35843		FastStone Image Viewer 缓冲区错误漏洞
CVE-2020-27814		OpenJPEG 代码问题漏洞
CVE-2020-25737		Hackolade 安全漏洞
CVE-2021-22698		Schneider Electric EcoStruxure Power Build - Rapsody 代码问题漏洞
CVE-2021-22697		Schneider Electric EcoStruxure Power Build - Rapsody 代码问题漏洞
CVE-2020-28221		Opera Software Opera 输入验证错误漏洞
CVE-2020-0236		Google Android 缓冲区错误漏洞
CVE-2021-3185		gst-plugins-bad 安全漏洞
CVE-2020-35513		Linux Kernel NFS 安全漏洞
CVE-2021-3278		Local Service Search Engine Management System SQL注入漏洞
CVE-2020-35576		TP-LINK TL-WR841N 操作系统命令注入漏洞
CVE-2020-35853		4images Image Gallery Management System 跨站脚本漏洞
CVE-2020-35270		Projectnotes Student Result Management System SQL注入漏洞
CVE-2020-36221		OpenLDAP 数字错误漏洞

Showing top 20 of 32 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2020-27542

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2020-27542

I. Basic Information for CVE-2020-27542

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-27542

III. Intelligence Information for CVE-2020-27542

Same Patch Batch · n/a · 2021-01-25 · 32 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2020-27542

Leave a comment