| 标题 | Edimax BR-6208AC V2_1.02 Command Injection |
|---|
| 描述 | A command injection vulnerability exists in the IQ setup `setWAN` handler of Edimax BR-6208AC V2 1.02. In L2TP mode, the handler copies the attacker-controlled `L2TPUserName` parameter into a shell command and executes it with `system()`.
The implementation tries to block only semicolon-based payloads. Other shell features remain usable, allowing arbitrary command execution on the device. |
|---|
| 来源 | ⚠️ https://tzh00203.notion.site/Edimax-BR-6208AC-V2-1-02-setWAN-L2TPUserName-Command-Injection-33db5c52018a80c1b3aac6db8927bd0f |
|---|
| 用户 | tian (UID 93438) |
|---|
| 提交 | 2026-04-10 04時51分 (2 月前) |
|---|
| 管理 | 2026-05-02 13時05分 (22 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 360841 [Edimax BR-6208AC 1.02 L2TP Mode /goform/setWAN L2TPUserName 权限提升] |
|---|
| 积分 | 17 |
|---|