Описание
Several OS command injection vulnerabilities exist in the device firmware in the /var/salia/mqtt.php script. By publishing a specially crafted message to a certain MQTT topic arbitrary OS commands can be executed with root permissions.
EPSS
Процентиль: 39%
0.00177
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-78
Связанные уязвимости
CVSS3: 6.5
github
9 месяцев назад
Several OS command injection vulnerabilities exist in the device firmware in the /var/salia/mqtt.php script. By publishing a specially crafted message to a certain MQTT topic arbitrary OS commands can be executed with root permissions.
EPSS
Процентиль: 39%
0.00177
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-78