EUVD-2023-34146

Malicious code in bioql PyPI...

CVE-2023-2682

A vulnerability was found in Caton Live up to 2023-04-26 and classified as critical. This issue affects some unknown processing of the file /cgi-bin/ping.cgi of the component MiniHTTPD. The manipulation of the argument address with the input ;id;uname$IFS-a leads to command injection. The attack...

CVE-2023-2682

A vulnerability was found in Caton Live up to 2023-04-26 and classified as critical. This issue affects some unknown processing of the file /cgi-bin/ping.cgi of the component MiniHTTPD. The manipulation of the argument address with the input ;id;uname$IFS-a leads to command injection. The attack...

CVE-2023-2682

A vulnerability was found in Caton Live up to 2023-04-26 and classified as critical. This issue affects some unknown processing of the file /cgi-bin/ping.cgi of the component MiniHTTPD. The manipulation of the argument address with the input ;id;uname$IFS-a leads to command injection. The attack...

Command injection

A vulnerability was found in Caton Live up to 2023-04-26 and classified as critical. This issue affects some unknown processing of the file /cgi-bin/ping.cgi of the component MiniHTTPD. The manipulation of the argument address with the input ;id;uname$IFS-a leads to command injection. The attack...

CVE-2023-2682 Caton Live Mini_HTTPD ping.cgi command injection

A vulnerability was found in Caton Live up to 2023-04-26 and classified as critical. This issue affects some unknown processing of the file /cgi-bin/ping.cgi of the component MiniHTTPD. The manipulation of the argument address with the input ;id;uname$IFS-a leads to command injection. The attack...

CVE-2023-2682 Caton Live Mini_HTTPD ping.cgi command injection

A vulnerability was found in Caton Live up to 2023-04-26 and classified as critical. This issue affects some unknown processing of the file /cgi-bin/ping.cgi of the component MiniHTTPD. The manipulation of the argument address with the input ;id;uname$IFS-a leads to command injection. The attack...

CVE-2023-2682

The CVE-2023-2682 issue affects Caton Live (Mini_HTTPD) and centers on command injection via the /cgi-bin/ping.cgi endpoint. The root cause is manipulation of the address parameter with the input ;id;uname${IFS}-a, enabling remote code execution. Public details indicate the vulnerability is prese...

PT-2023-20808 · Unknown · Caton Live +1

Name of the Vulnerable Software and Affected Versions: Caton Live versions up to 2023-04-26 Description: A critical issue affects the Mini HTTPD component, specifically the /cgi-bin/ping.cgi file. The manipulation of the address argument with the input ;id;uname$IFS-a leads to command injection...

Caton Live 命令注入漏洞

Caton Live is a game-changing video processor for live broadcasting from China's Caton Technology Caton. A command injection vulnerability exists in Caton Live version 2023-04-26 and prior versions that stems from certain parameters that can lead to a command injection attack, such as the id...