5 matches found
CVE-2022-24193
CasaOS before v0.2.7 was discovered to contain a command injection vulnerability...
CVE-2022-24193
creationtimestamp| type| source ---|---|--- 2022-03-10 20:13:04+00:00| seen| https://t.me/cibsecurity/38661...
CVE-2022-24193
CasaOS before v0.2.7 was discovered to contain a command injection vulnerability...
CVE-2022-24193
CasaOS (before v0.2.7) contains a command injection vulnerability in the API handling zerotier join/leave requests. The root cause is unsanitized user input in the component managing zerotier API calls, enabling arbitrary commands. Affected versions are prior to 0.2.7. Impact is command execution...
Command Injection Over HTTP (CVE-2019-9166; CVE-2021-43936; CVE-2022-1813; CVE-2022-24086; CVE-2022-24193; CVE-2022-26536; CVE-2022-32092; CVE-2022-37810; CVE-2022-40048)
A command Injection over HTTP vulnerability has been reported. A remote attacker can exploit this issue by sending a specially crafted request to the victim. Successful exploitation would allow an attacker to execute arbitrary code on the target machine...