CVE-2021-39280
CVE-2021-39280 affects Korenix JetWave devices (2212X/S/G, 3220 V3, 3420 V3, 2311) with unauthenticated attack surface via /syscmd.asp. Authenticated users can execute arbitrary code as root due to the command-injection/CSRF vulnerabilities described in multiple sources. Affected firmware version...