There is a command injection vulnerability in the HG8045Q product. When the command-line interface is enabled, which is disabled by default, attackers with administrator privilege could execute part of commands.
[
{
"product": "EchoLife HG8045Q",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "V300R016C00,V300R018C10"
}
]
}
]