3 matches found
CVE-2021-20140
creationtimestamp| type| source ---|---|--- 2021-12-09 18:23:58+00:00| seen| https://t.me/cibsecurity/33693...
CVE-2021-20140
An unauthenticated command injection vulnerability exists in the parameters of operation 10 in the controllerserver service on Gryphon Tower routers. An unauthenticated remote attacker on the same network can execute commands as root on the device by sending a specially crafted malicious packet t...
CVE-2021-20140
Summary: CVE-2021-20140 describes an unauthenticated command injection in Gryphon Tower routers. The vulnerability occurs in the controller_server service, specifically in operation 10, where a crafted packet sent to port 9999 from an on-network attacker can execute commands as root. Multiple con...