3 matches found
CVE-2022-33326
Multiple command injection vulnerabilities exist in the webserver ajax endpoints functionalities of Robustel R1510 3.3.0. A specially-crafted network packets can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these vulnerabilities.The...
CVE-2022-33326
Multiple command injection vulnerabilities exist in the webserver ajax endpoints functionalities of Robustel R1510 3.3.0. A specially-crafted network packets can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these vulnerabilities.The...
CVE-2022-33326
The CVE-2022-33326 family affects Robustel R1510 (3.3.0) Web UI endpoints. The root cause is unsafe command execution via system()-style calls in multiple /ajax/* endpoints (eg /ajax/config_rollback/, /ajax/clear_tools_log/, /ajax/remove_sniffer_raw_log/, /ajax/remove/, /ajax/set_sys_time/) where...