Описание
HooToo TripMate Titan HT-TM05 and HT-05 routers with firmware 2.000.022 and 2.000.082 allow remote command execution via shell metacharacters in the mac parameter of a protocol.csp?function=set&fname=security&opt=mac_table request.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party AdvisoryVDB Entry
- ExploitThird Party Advisory
- ExploitThird Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
Одновременно
Одно из
cpe:2.3:o:hootoo:tripmate_titan_ht-tm05_firmware:2.000.022:*:*:*:*:*:*:*
cpe:2.3:o:hootoo:tripmate_titan_ht-tm05_firmware:2.000.082:*:*:*:*:*:*:*
cpe:2.3:h:hootoo:tripmate_titan_ht-tm05:-:*:*:*:*:*:*:*
EPSS
Процентиль: 97%
0.41926
Средний
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
CWE-78
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
HooToo TripMate Titan HT-TM05 and HT-05 routers with firmware 2.000.022 and 2.000.082 allow remote command execution via shell metacharacters in the mac parameter of a protocol.csp?function=set&fname=security&opt=mac_table request.
EPSS
Процентиль: 97%
0.41926
Средний
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
CWE-78