3 matches found
CVE-2023-38378
The web interface on the RIGOL MSO5000 digital oscilloscope with firmware 00.01.03.00.03 allows remote attackers to execute arbitrary code via shell metacharacters in pass1 to the webcontrol changepwd.cgi application...
CVE-2023-38378
The web interface on the RIGOL MSO5000 digital oscilloscope with firmware 00.01.03.00.03 allows remote attackers to execute arbitrary code via shell metacharacters in pass1 to the webcontrol changepwd.cgi application...
CVE-2023-38378
CVE-2023-38378 concerns the RIGOL MSO5000 digital oscilloscope web interface. Affects firmware 00.01.03.00.03. The issue arises in the webcontrol changepwd.cgi handler, where shell metacharacters in pass1 enable remote arbitrary code execution. The CVSSv3.1 vector provided (AV:N/AC:L/PR:N/UI:N/S:...