CVE-2022-42493 in QUARTZ-GOLDИнформация

Сводка

по MITRE • 27.01.2023

Several OS command injection vulnerabilities exist in the m2m binary of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network request can lead to arbitrary command execution. An attacker can send a network request to trigger these vulnerabilities.This command injection is reachable through the m2m's DOWNLOAD_INFO command.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Ответственный

Talos

Резервировать

07.10.2022

Раскрытие

27.01.2023

Модерация

принято

Вход

VDB-219468

EPSS

0.03499

KEV

Нет

Деятельности

Очень низкий

Источники

Might our Artificial Intelligence support you?

Check our Alexa App!