3 matches found
CVE-2021-36706
creationtimestamp| type| source ---|---|--- 2021-08-06 18:32:51+00:00| seen| https://t.me/cibsecurity/26953...
CVE-2021-36706
In ProLink PRC2402M V1.0.18 and older, the setsyscmd function in the adm.cgi binary, accessible with a page parameter value of sysCMD contains a trivial command injection where the value of the command parameter is passed directly to system...
CVE-2021-36706
ProLink PRC2402M routers (version 1.0.18 and earlier) contain a command injection vulnerability in the adm.cgi page handler set_sys_cmd. The vulnerability is triggered by a sysCMD parameter value that is passed directly to the system() call, allowing an attacker to execute arbitrary commands. Pub...