CVE-2021-36707
ProLink PRC2402M routers (V1.0.18 and older) are affected by a command-injection in the set_ledonoff function of the adm.cgi binary. The ledonoff page parameter triggers a vulnerability where the led_cmd parameter value is passed directly to do_system, enabling arbitrary command execution. Affect...