3 matches found
CVE-2021-30232
The api/ZRIGMP/setIGMPPROXY interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the IGMPPROXYWANCONNECT parameter...
China Mobile An Lianbao WF-1 Router Command Injection (CVE-2021-30231; CVE-2021-30228; CVE-2021-30230; CVE-2021-30232; CVE-2021-30233; CVE-2021-30234)
A command injection vulnerability exists in China Mobile An Lianbao WF-1 router. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
CVE-2021-30232
Consolidated findings for CVE-2021-30232: Affects China Mobile An Lianbao WF-1 router 1.0.1. The api/ZRIGMP/set_IGMP_PROXY interface is vulnerable to OS command injection via shell metacharacters in the IGMP_PROXY_WAN_CONNECT parameter, enabling remote command execution. The issue is rooted in th...