2 matches found
CVE-2023-23294
Korenix JetWave 4200 Series 1.3.0 and JetWave 3000 Series 1.6.0 are vulnerable to Command Injection. An attacker can modify the filename parameter to execute commands as root...
CVE-2023-23294
CVE-2023-23294 affects Korenix JetWave 4200 Series 1.3.0 and JetWave 3000 Series 1.6.0. The root cause is command injection via the file_name parameter, allowing an attacker to execute commands as root. Affects JetWave 4200/3000 devices; the issue is rated CVSS v3.1 8.8 (Network, Low attack compl...