2 matches found
CVE-2022-42484
An OS command injection vulnerability exists in the httpd logs/view.cgi functionality of FreshTomato 2022.5. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can send an HTTP request to trigger this vulnerability...
CVE-2022-42484
CVE-2022-42484 affects FreshTomato 2022.5 in the httpd logs/view.cgi OS command injection. TALOS reports confirm an OS command injection vulnerability (and related directory traversal) that can trigger arbitrary code execution via crafted HTTP requests. Impact is remote command execution with web...