exploitDog

CVE-2009-5157

Опубликовано: 11 июн. 2019

Источник: nvd

CVSS3: 8.8

CVSS2: 9

EPSS Низкий

Описание

On Linksys WAG54G2 1.00.10 devices, there is authenticated command injection via shell metacharacters in the setup.cgi c4_ping_ipaddr variable.

Ссылки

https://www.securityfocus.com/archive/1/503934
Exploit
Third Party Advisory
VDB Entry
https://www.securityfocus.com/bid/35142
Third Party Advisory
VDB Entry
https://www.securityfocus.com/archive/1/503934
Exploit
Third Party Advisory
VDB Entry
https://www.securityfocus.com/bid/35142
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:linksys:wag54g2_firmware:1.00.10:*:*:*:*:*:*:*

cpe:2.3:h:linksys:wag54g2:-:*:*:*:*:*:*:*

EPSS

Процентиль: 92%

0.08973

Низкий

8.8 High

CVSS3

9 Critical

CVSS2

Дефекты

CWE-77

Связанные уязвимости

GHSA-9cgp-2w4g-2m78

CVSS3: 8.8

github

почти 4 года назад

On Linksys WAG54G2 1.00.10 devices, there is authenticated command injection via shell metacharacters in the setup.cgi c4_ping_ipaddr variable.

EPSS

Процентиль: 92%

0.08973

Низкий

8.8 High

CVSS3

9 Critical

CVSS2

Дефекты

CWE-77