exploitDog

GHSA-fm7j-3jwj-3cr6

Опубликовано: 23 дек. 2021

Источник: github

Github: Не прошло ревью

CVSS3: 9.9

Описание

An OS command injection vulnerability exists in the Web Manager Wireless Network Scanner functionality of Lantronix PremierWave 2050 8.9.0.0R4. A specially-crafted HTTP request can lead to command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability.

An OS command injection vulnerability exists in the Web Manager Wireless Network Scanner functionality of Lantronix PremierWave 2050 8.9.0.0R4. A specially-crafted HTTP request can lead to command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability.

Ссылки

EPSS

Процентиль: 100%

0.92333

Критический

9.9 Critical

CVSS3

CVE ID

Дефекты

CWE-78

Связанные уязвимости

CVE-2021-21881

CVSS3: 9.9

nvd

около 4 лет назад

An OS command injection vulnerability exists in the Web Manager Wireless Network Scanner functionality of Lantronix PremierWave 2050 8.9.0.0R4. A specially-crafted HTTP request can lead to command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability.

BDU:2022-07024

CVSS3: 9.9

fstec

около 4 лет назад

Уязвимость веб-интерфейса управления микропрограммного обеспечения WLAN-клиента Hirschmann BAT-C2, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 100%

0.92333

Критический

9.9 Critical

CVSS3

CVE ID

Дефекты

CWE-78