CVE-2022-42491 in QUARTZ-GOLDinformazioni

Riassunto

di MITRE • 27/01/2023

Several OS command injection vulnerabilities exist in the m2m binary of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network request can lead to arbitrary command execution. An attacker can send a network request to trigger these vulnerabilities.This command injection is reachable through the m2m's M2M_CONFIG_SET command

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Responsabile

Talos

Prenotare

07/10/2022

Divulgazione

27/01/2023

Moderazione

accettato

CPE

pronto

EPSS

0.03233

KEV

no

Attività

molto basso

Fonti

Interested in the pricing of exploits?

See the underground prices here!