Описание
A command injection vulnerability was found in the ping functionality of the MitraStar GPT-2741GNAC router (firmware version AR_g5.8_110WVN0b7_2). The vulnerability allows an authenticated user to execute arbitrary OS commands by sending specially crafted input to the router via the ping function.
Ссылки
- Broken Link
- Broken Link
- ExploitThird Party Advisory
- Broken Link
- Broken Link
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:mitrastar:gpt-2741gnac_firmware:ar_g5.8_110wvn0b7_2:*:*:*:*:*:*:*
cpe:2.3:h:mitrastar:gpt-2741gnac:-:*:*:*:*:*:*:*
EPSS
Процентиль: 98%
0.58012
Средний
7.2 High
CVSS3
Дефекты
CWE-78
CWE-78
Связанные уязвимости
CVSS3: 7.2
github
больше 2 лет назад
A command injection vulnerability was found in the ping functionality of the MitraStar GPT-2741GNAC router (firmware version AR_g5.8_110WVN0b7_2). The vulnerability allows an authenticated user to execute arbitrary OS commands by sending specially crafted input to the router via the ping function.
EPSS
Процентиль: 98%
0.58012
Средний
7.2 High
CVSS3
Дефекты
CWE-78
CWE-78