| Titre | H3C Technologies Co., Ltd. H3C Magic NX15\H3C NX400\H3C Magic R3010\H3C Magic BE18000\H3C Magic NX30 Pro <=V100R014 Remote command execution |
|---|
| Description | In the H3C Magic series products, including H3C Magic NX15, H3C NX400, H3C Magic R3010, H3C Magic BE18000, and H3C Magic NX30 Pro, an attacker can send a specially crafted POST request to the /api/esps route, enabling remote code execution with the highest privileges. |
|---|
| La source | ⚠️ https://github.com/ZIKH26/CVE-information/blob/master/H3C/Vulnerability%20Information_2.md |
|---|
| Utilisateur | ZIKH26 (UID 61938) |
|---|
| Soumission | 14/03/2025 06:45 (il y a 1 Année) |
|---|
| Modérer | 24/03/2025 13:59 (10 days later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 300746 [H3C Magic BE18000 jusqu’à V100R014 HTTP POST Request /api/esps élévation de privilèges] |
|---|
| Points | 17 |
|---|