Unleashed APs are being detected as vulnerable to CVE-2020-36254
Summary
- Dropbear is mishandling the filename of . or an empty filename.
Vulnerability Detection Result
- Installed version: 2018.76 Fixed version: 2020.79 Installation path / port: 22/tcp
Impact
- Successful exploitation would allow an attacker to modify the permissions of the target directory on the client side.
Can someone advise if this is mitigated or a false positive?
