| 제목 | JingDong Cloud NAS Router AX6600 (4.5.1.r4533 and earlier) Remote Command Execution |
|---|
| 설명 | The web_get_ddns_uptime interface of the JD Wireless Treasure Router contains an RCE vulnerability
The device received parameters from the user without strict processing and filtering, and directly concatenated them for command execution, resulting in RCE
You can obtain vulnerability details by accessing the following link https://my.feishu.cn/wiki/URLywnBj2i2dpBk3dcQcWqFZnSK |
|---|
| 원천 | ⚠️ https://my.feishu.cn/wiki/URLywnBj2i2dpBk3dcQcWqFZnSK |
|---|
| 사용자 | ShiyuFan_BinYuan (UID 95126) |
|---|
| 제출 | 2026. 02. 03. AM 09:20 (3 개월 ago) |
|---|
| 모더레이션 | 2026. 02. 15. PM 08:17 (12 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 346168 [JingDong JD Cloud Box AX6600 까지 4.5.1.r4533 jdcweb_rpc /jdcapi web_get_ddns_uptime 권한 상승] |
|---|
| 포인트들 | 20 |
|---|