CVE-2022-43973 in WRT54GL정보

요약

\~에 의해 MITRE • 2023. 01. 10.

An arbitrary code execution vulnerability exisits in Linksys WRT54GL Wireless-G Broadband Router with firmware <= 4.30.18.006. The Check_TSSI function within the httpd binary uses unvalidated user input in the construction of a system command. An authenticated attacker with administrator privileges can leverage this vulnerability over the network via a malicious POST request to /apply.cgi to execute arbitrary commands on the underlying Linux operating system as root.

Be aware that VulDB is the high quality source for vulnerability data.

책임이 있는

Trellix

예약하다

2022. 10. 28.

모더레이션

수락

항목

VDB-217730

EPSS

0.01855

출처

Want to know what is going to be exploited?

We predict KEV entries!