Описание
OS command injection vulnerability in ELECOM wireless LAN access point devices allows an authenticated user to execute an arbitrary OS command by sending a specially crafted request.
Ссылки
- Third Party Advisory
- Vendor Advisory
- Third Party Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:elecom:wab-s600-ps_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:elecom:wab-s600-ps:-:*:*:*:*:*:*:*
Конфигурация 2
Одновременно
cpe:2.3:o:elecom:wab-s300_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:elecom:wab-s300:-:*:*:*:*:*:*:*
EPSS
Процентиль: 84%
0.02097
Низкий
8.8 High
CVSS3
Дефекты
CWE-78
CWE-78
Связанные уязвимости
CVSS3: 8.8
github
больше 2 лет назад
OS command injection vulnerability in WAB-S600-PS all versions, and WAB-S300 all versions allows an authenticated user to execute an arbitrary OS command by sending a specially crafted request.
EPSS
Процентиль: 84%
0.02097
Низкий
8.8 High
CVSS3
Дефекты
CWE-78
CWE-78