exploitDog

GHSA-pmjv-fqjq-j59g

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.1

Описание

A unauthenticated backdoor exists in the configuration server functionality of Cosori Smart 5.8-Quart Air Fryer CS158-AF 1.1.0. A specially crafted JSON object can lead to code execution. An attacker can send a malicious packet to trigger this vulnerability.

A unauthenticated backdoor exists in the configuration server functionality of Cosori Smart 5.8-Quart Air Fryer CS158-AF 1.1.0. A specially crafted JSON object can lead to code execution. An attacker can send a malicious packet to trigger this vulnerability.

Ссылки

EPSS

Процентиль: 83%

0.02015

Низкий

8.1 High

CVSS3

CVE ID

Связанные уязвимости

CVE-2020-28593

CVSS3: 8.1

nvd

почти 5 лет назад

A unauthenticated backdoor exists in the configuration server functionality of Cosori Smart 5.8-Quart Air Fryer CS158-AF 1.1.0. A specially crafted JSON object can lead to code execution. An attacker can send a malicious packet to trigger this vulnerability.

EPSS

Процентиль: 83%

0.02015

Низкий

8.1 High

CVSS3

CVE ID