Lucene search
GoogleOSV:GHSA-5H8C-8CCP-8GMHHistoryFeb 01, 2023 - 6:30 a.m.
mt7688-wiscan is vulnerable to Command Injection due to improper input sanitization
2023-02-0106:30:30
Google
osv.dev
3
mt7688-wiscan
command injection
input sanitization
wiscan.scan
software}
.
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
9.9%
Versions of the package mt7688-wiscan before 0.8.3 are vulnerable to Command Injection due to improper input sanitization in the ‘wiscan.scan’ function.
| CPE | Name | Operator | Version |
|---|---|---|---|
| mt7688-wiscan | lt | 0.8.3 |
Related
veracode
veracode
Command Injection
2023-02-15 04:58:32
cvelist
cvelist
CVE-2022-25916
2023-02-01 05:00:01
cve
cve
CVE-2022-25916
2023-02-01 05:15:12
nvd
nvd
CVE-2022-25916
2023-02-01 05:15:12
prion
prion
Command injection
2023-02-01 05:15:00
github
github
osv
osv
CVE-2022-25916
2023-02-01 05:15:12
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
9.9%
Related for OSV:GHSA-5H8C-8CCP-8GMH