CVE-2019-6288

Edgecore ECS2020 Firmware 1.0.0.0 devices allow Unauthenticated Command Injection via the command1 HTTP header to the /EXCUSHELL URI...

Edgecore ECS2020 Command Injection (CVE-2019-6288)

A command injection vulnerability exists in Edgecore ECS2020. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

CVE-2019-6288

Edgecore ECS2020 Firmware 1.0.0.0 devices allow Unauthenticated Command Injection via the command1 HTTP header to the /EXCUSHELL URI...

CVE-2019-6288

Edgecore ECS2020 Firmware 1.0.0.0 devices allow Unauthenticated Command Injection via the command1 HTTP header to the /EXCUSHELL URI...

Command injection

Edgecore ECS2020 Firmware 1.0.0.0 devices allow Unauthenticated Command Injection via the command1 HTTP header to the /EXCUSHELL URI...

CVE-2019-6288

Edgecore ECS2020 Firmware 1.0.0.0 devices allow Unauthenticated Command Injection via the command1 HTTP header to the /EXCUSHELL URI...

CVE-2019-6288

CVE-2019-6288 affects Edgecore ECS2020 firmware (1.0.0.0). The vulnerability allows unauthenticated command injection via the HTTP header command1 to the /EXCU_SHELL URI, as described in multiple sources. This corresponds to a network-exposed impact with potential high-severity consequences; CVSS...

Edgecore ECS2020 命令注入漏洞

The Edgecore ECS2020 is a network smart switch solution from Edgecore China. A security vulnerability exists in the Edgecore ECS2020 version 1.0.0.0 firmware that originates from allowing unauthenticated commands to be injected into the /EXCUSHELL URI via the command1 HTTP header...