Lucene search
HistoryOct 27, 2022 - 6:15 p.m.
CVE-2022-31898
cve-2022-31898
gl-inet
gl-mt300n-v2
mango
command injection
security vulnerability
6.8 Medium
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
28.6%
gl-inet GL-MT300N-V2 Mango v3.212 and GL-AX1800 Flint v3.214 were discovered to contain multiple command injection vulnerabilities via the ping_addr and trace_addr function parameters.
Affected configurations
Node
gl-inetgl-mt300n-v2_firmwareMatch3.212
gl-inetgl-mt300n-v2Match-
Node
gl-inetgl-ax1800_firmwareMatch3.214
gl-inetgl-ax1800Match-
| CPE | Name | Operator | Version |
|---|---|---|---|
| gl-inet:gl-mt300n-v2_firmware | gl-inet gl-mt300n-v2 firmware | eq | 3.212 |
References
Social References
More
Related
githubexploit
githubexploit
Exploit for OS Command Injection in Gl-Inet Gl-Mt300N-V2 Firmware
2022-11-11 05:11:14
prion
prion
Command injection
2022-10-27 18:15:00
cvelist
cvelist
CVE-2022-31898
2022-10-27 00:00:00
nvd
nvd
CVE-2022-31898
2022-10-27 18:15:10
6.8 Medium
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
28.6%
Related for CVE-2022-31898