Unauthenticated remote code execution in OPTILINK OP-XT71000N, Hardware Version: V2.2 occurs when the attacker passes arbitrary commands with IP-ADDRESS using " | " to execute commands on " /diag_tracert_admin.asp " in the βPingTestβ parameter that leads to command execution.
CPE | Name | Operator | Version |
---|---|---|---|
op-xt71000n_firmware | eq | 3.3.1-191028 |