Описание
Several OS command injection vulnerabilities exist in the device firmware in the /var/salia/mqtt.php script. By publishing a specially crafted message to a certain MQTT topic arbitrary OS commands can be executed with root permissions.
EPSS
Процентиль: 34%
0.00138
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-78
Связанные уязвимости
CVSS3: 6.5
github
3 месяца назад
Several OS command injection vulnerabilities exist in the device firmware in the /var/salia/mqtt.php script. By publishing a specially crafted message to a certain MQTT topic arbitrary OS commands can be executed with root permissions.
EPSS
Процентиль: 34%
0.00138
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-78