2 matches found
CVE-2022-32765
CVE-2022-32765 affects Robustel R1510 (versions 3.1.16 and 3.3.0). TALOS-2022-1576 documents an OS command-injection via the sysupgrade flow: the firmware upgrade path builds a shell command using upgrade_obj.file_desc in a snprintf call, then executes it via system(); if upgrade_obj.file_desc is...
Vulnerability Spotlight: Multiple issues in Robustel R1510 cellular router could lead to code execution, denial of service
Francesco Benvenuto of Cisco Talos discovered these vulnerabilities. Cisco Talos recently discovered nine vulnerabilities in the Robustel R1510 industrial cellular router, several of which could allow an adversary to inject operating system code remotely. The Robustel R1510 router is a...