ARRIS TR3300 is an 802.11ac Wi-Fi router from ARRIS U.S.A. A command injection vulnerability exists in ARRIS TR3300 v1.0.13, which stems from the failure of the wps_enrolee_pin parameter in the wps function to properly filter the construct command special characters, commands, etc. An attacker could use this vulnerability to cause arbitrary command execution.
CPE | Name | Operator | Version |
---|---|---|---|
ARRIS TR3300 v | eq | 1.0.13 |