4 matches found
CVE-2021-30228
The api/ZRAndlink/setZRAndlink interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the iandlinkprocenable parameter...
China Mobile An Lianbao WF-1 Router Command Injection (CVE-2021-30231; CVE-2021-30228; CVE-2021-30230; CVE-2021-30232; CVE-2021-30233; CVE-2021-30234)
A command injection vulnerability exists in China Mobile An Lianbao WF-1 router. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
CVE-2021-30228
The api/ZRAndlink/setZRAndlink interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the iandlinkprocenable parameter...
CVE-2021-30228
The CVE-2021-30228 entry documents a remote command-injection vulnerability in China Mobile An Lianbao WF-1 router (firmware version 1.0.1). The flaw stems from the api/ZRAndlink/set_ZRAndlink interface, allowing shell metacharacters in the iandlink_proc_enable parameter to execute arbitrary comm...