exploitDog

GHSA-39p5-3m6f-c8xp

Опубликовано: 02 апр. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

An issue in BL-AC2100 V1.0.4 and before allows a remote attacker to execute arbitrary code via the enable parameter passed to /goform/set_hidessid_cfg is not handled properly.

An issue in BL-AC2100 V1.0.4 and before allows a remote attacker to execute arbitrary code via the enable parameter passed to /goform/set_hidessid_cfg is not handled properly.

Ссылки

EPSS

Процентиль: 89%

0.04401

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-77

Связанные уязвимости

CVE-2025-29063

CVSS3: 9.8

nvd

10 месяцев назад

An issue in BL-AC2100 V1.0.4 and before allows a remote attacker to execute arbitrary code via the enable parameter passed to /goform/set_hidessid_cfg is not handled properly.

EPSS

Процентиль: 89%

0.04401

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-77