CVE-2018-11220

High

8.8/10

Summary

Bitmain Antminer D3, L3+, and S9 devices allow Remote Command Execution via the system restore function.

Attack Complexity: LOW
Attack Vector: NETWORK
Integrity Impact: HIGH
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: LOW
Confidentiality Impact: HIGH
Availability Impact: HIGH

References

Advisory Timeline

Published May 31, 2018