7 matches found
CVE-2022-40022
Microchip Technology Microsemi SyncServer S650 was discovered to contain a command injection vulnerability...
Symmetricom SyncServer Unauthenticated Remote Command Execution Exploit
This Metasploit module exploits an unauthenticated command injection vulnerability in /controller/ping.php in Symmetricom SyncServer. The S100 through S350 End of Life models should be vulnerable to unauthenticated exploitation due to a session handling vulnerability. This module requires...
Symmetricom SyncServer Unauthenticated Remote Command Execution
This module exploits an unauthenticated command injection vulnerability in /controller/ping.php. The S100 through S350 End of Life models should be vulnerable to unauthenticated exploitation due to a session handling vulnerability. Later models require authentication which is not provided in this...
Symmetricom SyncServer Unauthenticated Remote Command Execution
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Symmetricom SyncServer Unauthenticated Remote Command Execution', 'Description' = %q This module exploits an unauthenticated command injection...
CVE-2022-40022
creationtimestamp| type| source ---|---|--- 2023-06-13 22:37:51+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/symmetricomsyncserverrce.rb 2025-01-26 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-01-26 2025-01-26...
CVE-2022-40022
Microchip Technology Microsemi SyncServer S650 was discovered to contain a command injection vulnerability...
CVE-2022-40022
Symmetricom SyncServer S650 is affected by CVE-2022-40022, an unauthenticated command-injection vulnerability in the /controller/ping.php endpoint. The NVD entry and Nuclei template describe an exploit linked to a command execution that affects the SyncServer S650 line; the vulnerability is state...