3 matches found
MSNSwitch Firmware MNT.2408 - Remote Code Exectuion Exploit
Exploit Title: MSNSwitch Firmware MNT.2408 - Remote Code Exectuion RCE Exploit Author: Eli Fulkerson Vendor Homepage: https://www.msnswitch.com/ Version: MNT.2408 Tested on: MNT.2408 firmware CVE: CVE-2022-32429 !/usr/bin/python3 """ POC for unauthenticated configuration dump, authenticated RCE o...
MSNSwitch Firmware MNT.2408 - Remote Code Execution
Exploit Title: MSNSwitch Firmware MNT.2408 - Remote Code Exectuion RCE Google Dork: n/a Date:9/1/2022 Exploit Author: Eli Fulkerson Vendor Homepage: https://www.msnswitch.com/ Version: MNT.2408 Tested on: MNT.2408 firmware CVE: CVE-2022-32429 !/usr/bin/python3 """ POC for unauthenticated...
CVE-2022-32429
MSNSwitch MNT.2408 is affected by an authentication bypass in the component /cgi-bin-sdb/ExportSettings.sh, allowing unauthenticated attackers to arbitrarily configure settings and potentially achieve remote code execution. The Nuclei template and Exploit DB entry describe unauthenticated config ...