Submeter #520499: H3C Technologies Co., Ltd. H3C Magic NX15\H3C NX400\H3C Magic R3010\H3C Magic BE18000\H3C Magic NX30 Pro <=V100R014 (Taking NX15 as an example.) Remote command executioninformação

TítuloH3C Technologies Co., Ltd. H3C Magic NX15\H3C NX400\H3C Magic R3010\H3C Magic BE18000\H3C Magic NX30 Pro <=V100R014 (Taking NX15 as an example.) Remote command execution
DescriçãoIn the H3C Magic series products, including H3C Magic NX15, H3C NX400, H3C Magic R3010, H3C Magic BE18000, and H3C Magic NX30 Pro, an attacker can send a specially crafted POST packet to the /api/wizard/getWifiNeighbour route without authorization, allowing them to obtain the highest privileges on the device.
Fonte⚠️ https://github.com/Qwen11/CVE_store/blob/main/H3C/vulnerability%20Information_4.md
Utilizador
 Qwen (UID 82796)
Submissão14/03/2025 10h47 (há 1 Ano)
Moderação24/03/2025 13h59 (10 days later)
EstadoAceite
Entrada VulDB300752 [H3C Magic BE18000 até V100R014 HTTP POST Request getWifiNeighbour Elevação de Privilégios]
Pontos17

VoltarVisão GeralPróximo

Want to stay up to date on a daily basis?

Enable the mail alert feature now!