4 matches found
CVE-2022-27224
An issue was discovered in Galleon NTS-6002-GPS 4.14.103-Galleon-NTS-6002.V12 4. An authenticated attacker can perform command injection as root via shell metacharacters within the Network Tools section of the web-management interface. All three networking tools are affected Ping, Traceroute, and...
Galleon NTS-6002-GPS Command Injection vulnerability (CVE-2022-27224)
TL;DR Galleon Systems’ GPS NTP time server had a command injection vulnerability in the firmware of their NTS GPS device which could allow total control of the device through the web management interface. The vulnerability - CVE-2022-27224 https://vulners.com/cve/CVE-2022-27224 Device: Galleon...
CVE-2022-27224
creationtimestamp| type| source ---|---|--- 2022-05-09 18:36:23+00:00| seen| https://t.me/cibsecurity/42176...
CVE-2022-27224
CVE-2022-27224 affects Galleon NTS-6002-GPS firmware 4.14.103-Galleon-NTS-6002.V12 4. An authenticated attacker can execute root-level command injections via shell metacharacters in the web-management Interface’s Network Tools (ping, traceroute, DNS lookup) input fields (ping_address, trace_addre...