Опубликовано: 02 фев. 2026
Источник: github
Github: Прошло ревью
CVSS4: 8.7
CVSS3: 8.8
Описание
RaspAP raspap-webgui contains an OS Command Injection vulnerability
RaspAP raspap-webgui versions prior to 3.3.6 contain an OS Command Injection vulnerability. If exploited, an arbitrary OS command may be executed by a user who can log in to the product.
Пакеты
Наименование
billz/raspap-webgui
composer
Затронутые версииВерсия исправления
< 3.3.6
3.3.6
Связанные уязвимости
CVSS3: 8.8
nvd
5 дней назад
RaspAP raspap-webgui versions prior to 3.3.6 contain an OS command injection vulnerability. If exploited, an arbitrary OS command may be executed by a user who can log in to the product.