Описание
Mitrastar GPT-2741GNAC-N2 devices are provided with access through ssh into a restricted default shell.The command "deviceinfo show file" is supposed to be used from restricted shell to show files and directories. By providing " /bin/sh" (quotes included) to the argument of this command will drop a root shell.
EPSS
Процентиль: 3%
0.00016
Низкий
8.4 High
CVSS3
Дефекты
CWE-250
Связанные уязвимости
CVSS3: 8.4
github
6 месяцев назад
Mitrastar GPT-2741GNAC-N2 devices are provided with access through ssh into a restricted default shell.The command "deviceinfo show file" is supposed to be used from restricted shell to show files and directories. By providing " /bin/sh" (quotes included) to the argument of this command will drop a root shell.
EPSS
Процентиль: 3%
0.00016
Низкий
8.4 High
CVSS3
Дефекты
CWE-250