Описание
Command injection in the administration interface in APSystems ECU-R version 5203 allows a remote unauthenticated attacker to execute arbitrary commands as root using the timezone parameter.
Ссылки
- ExploitThird Party Advisory
- Exploit
- ExploitThird Party Advisory
- Exploit
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:apsystems:ecu-r_firmware:5203:*:*:*:*:*:*:*
cpe:2.3:h:apsystems:ecu-r:-:*:*:*:*:*:*:*
EPSS
Процентиль: 100%
0.90791
Критический
9.8 Critical
CVSS3
Дефекты
CWE-78
CWE-94
Связанные уязвимости
CVSS3: 9.8
github
почти 3 года назад
Command injection in the administration interface in APSystems ECU-R version 5203 allows a remote unauthenticated attacker to execute arbitrary commands as root using the timezone parameter.
EPSS
Процентиль: 100%
0.90791
Критический
9.8 Critical
CVSS3
Дефекты
CWE-78
CWE-94