CVE-2019-7632

2022-10-0316:19:30

mitre

www.cve.org

9.1 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

74.4%

JSON

LifeSize Team, Room, Passport, and Networker 220 devices allow Authenticated Remote OS Command Injection, as demonstrated by shell metacharacters in the support/mtusize.php mtu_size parameter. The lifesize default password for the cli account may sometimes be used for authentication.