Описание
Prima Systems FlexAir devices allow Authenticated Command Injection resulting in Root Remote Code Execution.
Prima Systems FlexAir devices allow Authenticated Command Injection resulting in Root Remote Code Execution.
Связанные уязвимости
CVSS3: 7.2
nvd
больше 6 лет назад
Prima Systems FlexAir, Versions 2.3.38 and prior. The application incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component, which could allow attackers to execute commands directly on the operating system.