exploitDog

GHSA-7r3r-jp3h-r9vx

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

Quectel EG25-G devices through 202006130814 allow executing arbitrary code remotely by using an AT command to place shell metacharacters in quectel_handle_fumo_cfg input in atfwd_daemon.

Quectel EG25-G devices through 202006130814 allow executing arbitrary code remotely by using an AT command to place shell metacharacters in quectel_handle_fumo_cfg input in atfwd_daemon.

Ссылки

EPSS

Процентиль: 62%

0.00424

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-78

CWE-88

Связанные уязвимости

CVE-2021-31698

CVSS3: 9.8

nvd

больше 4 лет назад

Quectel EG25-G devices through 202006130814 allow executing arbitrary code remotely by using an AT command to place shell metacharacters in quectel_handle_fumo_cfg input in atfwd_daemon.

EPSS

Процентиль: 62%

0.00424

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-78

CWE-88