3 matches found
CVE-2021-30229
The api/zrDm/setzrDm interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the dmenable, AppKey, or Pwd parameter...
CVE-2021-30229
The api/zrDm/setzrDm interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the dmenable, AppKey, or Pwd parameter...
CVE-2021-30229
CVE-2021-30229 affects the China Mobile An Lianbao WF-1 router (version 1.0.1). The vulnerable component is the api/zrDm/set_zrDm interface, where remote attackers can inject shell metacharacters into parameters dm_enable, AppKey, or Pwd to execute arbitrary commands. Public references confirm a ...