10 matches found
CVE-2023-41109
SmartNode SN200 aka SN200 3.21.2-23021 allows unauthenticated OS Command Injection...
The vulnerability of the Network Diagnostic Commands function in the microprogramming software of the SmartNode SN200 adapter allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the Network Diagnostic Commands function in the microprogramming software of the SmartNode SN200 adapter lies in the lack of measures taken to neutralize the special elements used in the operating system commands. Exploiting this vulnerability can allow a remote attacker to...
SmartNode SN200 3.21.2-23021 OS Command Injection Vulnerability
Product: SmartNode SN200 Analog Telephone Adapter ATA & VoIP Gateway Manufacturer: Patton LLC Affected Versions: = 3.21.2-23021 Tested Versions: 2.21.1-22041, 3.21.2-23021, 3.22.0-23083 Vulnerability Type: OS Command Injection CWE-78 Vulnerability Type: Improper Access Control CWE-284 Risk Level:...
SmartNode SN200 3.21.2-23021 OS Command Injection
Advisory ID: SYSS-2023-019 Product: SmartNode SN200 Analog Telephone Adapter ATA & VoIP Gateway Manufacturer: Patton LLC Affected Versions: = 3.21.2-23021 Tested Versions: 2.21.1-22041, 3.21.2-23021, 3.22.0-23083 Vulnerability Type: OS Command Injection CWE-78 Vulnerability Type: Improper Access...
CVE-2023-41109
SmartNode SN200 aka SN200 3.21.2-23021 allows unauthenticated OS Command Injection...
CVE-2023-41109
SmartNode SN200 aka SN200 3.21.2-23021 allows unauthenticated OS Command Injection...
CVE-2023-41109
SmartNode SN200 aka SN200 3.21.2-23021 allows unauthenticated OS Command Injection...
Command injection
SmartNode SN200 aka SN200 3.21.2-23021 allows unauthenticated OS Command Injection...
CVE-2023-41109
SmartNode SN200 aka SN200 3.21.2-23021 allows unauthenticated OS Command Injection...
CVE-2023-41109
The SmartNode SN200 Analog Telephone Adapter / VoIP Gateway (firmware 3.21.2-23021 and earlier) is affected by an unauthenticated OS command injection (CWE-78). Public advisories (SySS SYSS-2023-019) and PT-2023-8337 indicate the vulnerability stems from improper handling in the Network Diagnosti...