제출 #446638: EnGenius ENS500-AC 3.7.20 Command Injection정보

제목EnGenius ENS500-AC 3.7.20 Command Injection
설명Engenius multiple devices /admin/network/diag_pinginterface has a command injection vulnerability, after the user logs in to the device, the diag_ping parameters command injection, the final system can successfully execute the command, can directly obtain system permissions.
원천⚠️ https://k9u7kv33ub.feishu.cn/wiki/PpM6w3TF8ilK3Ek5RLqcLPUrn6c
사용자
 liutong (UID 76264)
제출2024. 11. 18. PM 02:24 (2 연령 ago)
모더레이션2024. 11. 24. PM 04:14 (6 days later)
상태수락
VulDB 항목285976 [EnGenius ENH1350EXT/ENS500-AC/ENS620EXT 까지 20241118 diag_pinginterface diag_ping 권한 상승]
포인트들18

이전개요다음

Might our Artificial Intelligence support you?

Check our Alexa App!