Описание
All versions up to UKBB_WF820+_1.0.0B06 of ZTE WF820+ LTE Outdoor CPE product are impacted by command injection vulnerability. Due to inadequate parameter verification, unauthorized users can take advantage of this vulnerability to control the user terminal system.
Уязвимые конфигурации
Конфигурация 1Версия до 1.0.0b06 (исключая)
Одновременно
cpe:2.3:o:zte:wf820\+_lte_outdoor_cpe_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zte:wf820\+_lte_outdoor_cpe:-:*:*:*:*:*:*:*
EPSS
Процентиль: 86%
0.02722
Низкий
9 Critical
CVSS3
8.8 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-78
Связанные уязвимости
CVSS3: 8.8
github
больше 3 лет назад
All versions up to UKBB_WF820+_1.0.0B06 of ZTE WF820+ LTE Outdoor CPE product are impacted by command injection vulnerability. Due to inadequate parameter verification, unauthorized users can take advantage of this vulnerability to control the user terminal system.
EPSS
Процентиль: 86%
0.02722
Низкий
9 Critical
CVSS3
8.8 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-78