exploitDog

GHSA-72f4-4xcc-jqh3

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.2

Описание

Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via tools_firmware.cgi date parameter, time parameter, and offset parameter.

Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via tools_firmware.cgi date parameter, time parameter, and offset parameter.

Ссылки

EPSS

Процентиль: 69%

0.0059

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-78

Связанные уязвимости

CVE-2018-0639

CVSS3: 7.2

nvd

около 7 лет назад

Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via tools_firmware.cgi date parameter, time parameter, and offset parameter.

EPSS

Процентиль: 69%

0.0059

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-78