Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2023-68224
HistoryAug 30, 2023 - 12:00 a.m.

The Milesight UR32L is a 4G industrial router from China's Milesight. The Milesight UR32L vtysh_ubus toolsh_excute.constprop.1 feature suffers from a command injection vulnerability that can be exploited by an attacker to execute arbitrary commands on the system.

2023-08-3000:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
milesight
ur32l
4g
industrial router
china
imagemagick
software
vulnerability
command injection
imagemagick version 7.1.0-4
denial of service
exploit
attacker
system
open-source
american company
cnvd

EPSS

0.001

Percentile

17.0%

ImageMagick is a set of open-source image processing software from the American company ImageMagick. The software can read, convert or write images in a variety of formats. A denial of service vulnerability exists in ImageMagick version 7.1.0-4, which stems from a divide-by-zero issue in the ReadEnhMetaFile function. An attacker can exploit this vulnerability to cause a denial of service attack.