CVE-2022-38841

Linksys AX3200 1.1.00 is vulnerable to OS command injection by authenticated users via shell metacharacters to the diagnostics traceroute page...

EUVD-2022-41400

Malicious code in bioql PyPI...

VulnCheck KEV: CVE-2021-21872

An OS command injection vulnerability exists in the Web Manager Diagnostics: Traceroute functionality of Lantronix PremierWave 2050 8.9.0.0R4. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability...

CVE-2022-38841

Linksys AX3200 1.1.00 is vulnerable to OS command injection by authenticated users via shell metacharacters to the diagnostics traceroute page...

CVE-2022-38841

CVE-2022-38841 affects Linksys AX3200 firmware 1.1.00. An OS command injection exists on the diagnostics traceroute page that is accessible to authenticated users, enabling arbitrary command execution via shell metacharacters. The vulnerability can allow the execution of commands with root privil...

PT-2023-13659 · Linksys · Linksys Ax3200

Name of the Vulnerable Software and Affected Versions: Linksys AX3200 version 1.1.00 Description: The issue allows OS command injection by authenticated users via shell metacharacters to the diagnostics traceroute page. Recommendations: For Linksys AX3200 version 1.1.00, consider restricting acce...