9 matches found
EUVD-2021-23861
Malware in sbrugna...
CVE-2021-37289
Insecure Permissions in administration interface in Planex MZK-DP150N 1.42 and 1.43 allows attackers to execute system command as root via etcro/web/syscmd.asp...
The vulnerability of the web administration interface of the microprogramming software for the portable wireless module PLANEX MZK-DP150N allows a perpetrator to execute arbitrary commands.
The vulnerability of the web administration interface of the microprogramming software for the portable wireless module PLANEX MZK-DP150N is related to errors in the use of standard permissions. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands using a specially...
CVE-2021-37289
Insecure Permissions in administration interface in Planex MZK-DP150N 1.42 and 1.43 allows attackers to execute system command as root via etcro/web/syscmd.asp...
CVE-2021-37289
Insecure Permissions in administration interface in Planex MZK-DP150N 1.42 and 1.43 allows attackers to execute system command as root via etcro/web/syscmd.asp...
Command injection
Insecure Permissions in administration interface in Planex MZK-DP150N 1.42 and 1.43 allows attackers to execute system command as root via etcro/web/syscmd.asp...
CVE-2021-37289
Insecure Permissions in administration interface in Planex MZK-DP150N 1.42 and 1.43 allows attackers to execute system command as root via etcro/web/syscmd.asp...
CVE-2021-37289
Planex MZK-DP150N firmware versions 1.42/1.43 expose insecure permissions in the administration interface, allowing a remote attacker to execute system commands as root via etc_ro/web/syscmd.asp. The issue stems from a privileged path exposure in the config UI, with a potential impact of arbitrar...
PT-2022-4991 · Planex · Planex Mzk-Dp150N
Name of the Vulnerable Software and Affected Versions: Planex MZK-DP150N versions 1.42 through 1.43 Description: The issue is related to insecure permissions in the administration interface, allowing attackers to execute system commands as root via the etc ro/web/syscmd.asp file. This can be...