CVE-2013-10049 in IB-NAS5220정보

요약

\~에 의해 MITRE • 2025. 08. 02.

An OS command injection vulnerability exists in multiple Raidsonic NAS devices—specifically tested on IB-NAS5220 and IB-NAS4220—via the unauthenticated timeHandler.cgi endpoint exposed through the web interface. The CGI script fails to properly sanitize user-supplied input in the timeZone parameter of a POST request, allowing remote attackers to inject arbitrary shell commands.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

책임이 있는

VulnCheck

예약하다

2025. 08. 01.

모더레이션

수락

항목

VDB-318566

익스플로잇

다운로드

EPSS

0.01968

출처

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!