exploitDog

GHSA-mg5m-xf56-mvr9

Опубликовано: 16 июл. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

The web interface on the RIGOL MSO5000 digital oscilloscope with firmware 00.01.03.00.03 allows remote attackers to execute arbitrary code via shell metacharacters in pass1 to the webcontrol changepwd.cgi application.

The web interface on the RIGOL MSO5000 digital oscilloscope with firmware 00.01.03.00.03 allows remote attackers to execute arbitrary code via shell metacharacters in pass1 to the webcontrol changepwd.cgi application.

Ссылки

EPSS

Процентиль: 69%

0.00603

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-78

Связанные уязвимости

CVE-2023-38378

CVSS3: 9.8

nvd

больше 2 лет назад

The web interface on the RIGOL MSO5000 digital oscilloscope with firmware 00.01.03.00.03 allows remote attackers to execute arbitrary code via shell metacharacters in pass1 to the webcontrol changepwd.cgi application.

EPSS

Процентиль: 69%

0.00603

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-78