Описание
A remote command injection issues exists in the web server of the Kratos SpectralNet device with SpectralNet Narrowband (NB) before 1.7.5. As an admin user, an attacker can send a crafted password in order to execute Linux commands as the root user.
Уязвимые конфигурации
Конфигурация 1Версия до 1.7.5 (исключая)
Одновременно
cpe:2.3:o:kratosdefense:spectralnet_narrowband_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:kratosdefense:spectralnet_narrowband:-:*:*:*:*:*:*:*
EPSS
Процентиль: 51%
0.00276
Низкий
7.2 High
CVSS3
Дефекты
CWE-77
Связанные уязвимости
CVSS3: 7.2
github
больше 2 лет назад
A remote command injection issues exists in the web server of the Kratos SpectralNet device with SpectralNet Narrowband (NB) before 1.7.5. As an admin user, an attacker can send a crafted password in order to execute Linux commands as the root user.
EPSS
Процентиль: 51%
0.00276
Низкий
7.2 High
CVSS3
Дефекты
CWE-77