3 matches found
CVE-2023-1097
Baicells EG7035-M11 devices with firmware through BCE-ODU-1.0.8 are vulnerable to improper code exploitation via HTTP GET command injections. Commands are executed using pre-login execution and executed with root permissions. The following methods have been tested and validated by a 3rd party...
CVE-2023-1097 Unauthenticated Command Injection EG7035-M11 Series
Baicells EG7035-M11 devices with firmware through BCE-ODU-1.0.8 are vulnerable to improper code exploitation via HTTP GET command injections. Commands are executed using pre-login execution and executed with root permissions. The following methods have been tested and validated by a 3rd party...
CVE-2023-1097
Baicells EG7035-M11 devices with BCE-ODU-1.0.8 and prior firmware are affected by an improper HTTP GET command injection vulnerability. The issue allows pre-login execution of commands with root privileges via HTTP GET, as demonstrated and validated by a third‑party analyst. Affected component: d...