CVE-2018-14067

Green Packet WiMax DV-360 2.10.14-g1.0.6.1 devices allow Command Injection, with unauthenticated remote command execution, via a crafted payload to the HTTPS port, because lighttpd listens on all network interfaces including the external Internet by default. NOTE: this may overlap CVE-2017-9980...

Command injection

Green Packet WiMax DV-360 2.10.14-g1.0.6.1 devices allow Command Injection, with unauthenticated remote command execution, via a crafted payload to the HTTPS port, because lighttpd listens on all network interfaces including the external Internet by default. NOTE: this may overlap CVE-2017-9980...

CVE-2018-14067

CVE-2018-14067 affects Green Packet WiMax DV-360 devices running 2.10.14-g1.0.6.1. The issue is a command injection vulnerability causing unauthenticated remote command execution when a crafted payload is sent to the HTTPS port. The underlying cause cited is that lighttpd listens on all network i...

Green Packet WiMax DV-360 Command Injection Vulnerability

The Green Packet WiMax DV-360 is a router for the home from Green Packet USA. A security vulnerability exists in the Green Packet WiMax DV-360 2.10.14-g1.0.6.1 that allows for command injection, unauthenticated remote command execution via crafted payloads to HTTPS ports, as lighttpd listens to a...