CVE-2019-10656 in GWN7000المعلومات

الملخص

بحسب MITRE

Grandstream GWN7000 before 1.0.6.32 devices allow remote authenticated users to execute arbitrary code via shell metacharacters in the filename in a /ubus/uci.apply update_nds_webroot_from_tmp API call.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

حجز

30/03/2019

الاعتدال

تمت الموافقة

إدخال

VDB-132636

EPSS

0.03952

KEV

لا

النشاطات

منخفض جدًا

المصادر

Do you need the next level of professionalism?

Upgrade your account now!