Описание
An issue was discovered in Anyka Microelectronics AK3918EV300 MCU v18. A command injection vulnerability in the network configuration script within the MCU's operating system allows attackers to perform arbitrary command execution via a crafted wifi SSID or password.
Ссылки
- ExploitThird Party Advisory
- Product
- ExploitThird Party Advisory
- Product
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:anyka:ak3918ev300_firmware:18:*:*:*:*:*:*:*
cpe:2.3:h:anyka:ak3918ev300:-:*:*:*:*:*:*:*
EPSS
Процентиль: 60%
0.00398
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-77
CWE-77
Связанные уязвимости
CVSS3: 9.8
github
больше 2 лет назад
An issue was discovered in Anyka Microelectronics AK3918EV300 MCU v18. A command injection vulnerability in the network configuration script within the MCU's operating system allows attackers to perform arbitrary command execution via a crafted wifi SSID or password.
EPSS
Процентиль: 60%
0.00398
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-77
CWE-77