2 matches found
China Mobile An Lianbao WF-1 Router Command Injection (CVE-2021-30231; CVE-2021-30228; CVE-2021-30230; CVE-2021-30232; CVE-2021-30233; CVE-2021-30234)
A command injection vulnerability exists in China Mobile An Lianbao WF-1 router. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
CVE-2021-30231
The CVE-2021-30231 issue affects China Mobile An Lianbao WF-1 router (version 1.0.1). The vulnerability is in the api/zrDm/set_ZRElink interface, where remote attackers can inject shell metacharacters into parameters such as bssaddr, abiaddr, devtoken, devid, elinksync, or elink_proc_enable to ex...