3 matches found
CVE-2021-38306
Network Attached Storage on LG N1T1 10124 devices allows an unauthenticated attacker to gain root access via OS command injection in the en/ajp/plugins/access.ssh/checkInstall.php destServer parameter...
LG Network Attached Storage Command Injection (CVE-2021-38306)
A command injection vulnerability exists in LG Network Attached Storage. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
CVE-2021-38306
The CVE-2021-38306 entry concerns LG N1T1*** Network Attached Storage. Affected component: the en/ajp/plugins/access.ssh/checkInstall.php endpoint (destServer parameter). Root cause: OS command injection leading to unauthenticated remote code execution. Impact: attacker could gain root access on ...