Amino Communications EntoneWebEngine Command Injection (CVE-2020-10208)

A command injection vulnerability exists in Amino Communications EntoneWebEngine. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

CVE-2020-10208

CVE-2020-10208 affects Amino Communications EntoneWebEngine used in AK45x, AK5xx, AK65x, Aria6xx, Aria7/AK7Xx series, and Kami7B. The vulnerability is a command-injection flaw that allows an authenticated remote attacker to execute arbitrary commands with root privileges. The initial sources spec...