CVE-2022-42493 in QUARTZ-GOLD
要約
〜によって MITRE • 2023年01月27日
Several OS command injection vulnerabilities exist in the m2m binary of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network request can lead to arbitrary command execution. An attacker can send a network request to trigger these vulnerabilities.This command injection is reachable through the m2m's DOWNLOAD_INFO command.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.