exploitDog

GHSA-4xv5-h636-p47w

Опубликовано: 20 нояб. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 9.1

Описание

Multiple OS Command Injection vulnerabilities affecting Kasda KW6512 router software version KW6512_Linux_V1.0 enable an authenticated remote attacker to execute arbitrary OS commands via Quick Setup and Internet page parameters passed to internet.cgi.

Multiple OS Command Injection vulnerabilities affecting Kasda KW6512 router software version KW6512_Linux_V1.0 enable an authenticated remote attacker to execute arbitrary OS commands via Quick Setup and Internet page parameters passed to internet.cgi.

Ссылки

EPSS

Процентиль: 73%

0.00779

Низкий

9.1 Critical

CVSS3

CVE ID

Дефекты

CWE-77

Связанные уязвимости

CVE-2024-29292

CVSS3: 9.1

nvd

около 1 года назад

Multiple OS Command Injection vulnerabilities affecting Kasda LinkSmart Router KW6512 <= v1.3 enable an authenticated remote attacker to execute arbitrary OS commands via various cgi parameters.

EPSS

Процентиль: 73%

0.00779

Низкий

9.1 Critical

CVSS3

CVE ID

Дефекты

CWE-77