CVE-2021-42165

MitraStar GPT-2541GNAC-N1 HGU 100VNZ0b33 devices allow remote authenticated users to obtain root access by executing command "deviceinfo show file &&/bin/bash" because of incorrect sanitization of parameter "path"...

CVE-2021-42165

CVE-2021-42165 concerns MitraStar GPT-2541GNAC-N1 (HGU) firmware version 100VNZ0b33. A vulnerability allows remote authenticated users to obtain root access by executing the command “deviceinfo show file &&/bin/bash” due to incorrect sanitization of the parameter “path.” This is a command-injecti...

MitraStar GPT-2541GNAC (HGU) and DSL-100HN-T1 Elevation of Privilege Vulnerability (CNVD-2017-33285)

The MitraStar GPT-2541GNAC HGU and DSL-100HN-T1 are both MitraStar router products. An elevation of privilege vulnerability exists in the MitraStar GPT-2541GNAC HGU version 1.00VNJ0b1 and the DSL-100HN-T1 ES113WJY0b16, which originates from the account zyad1234 with the password zyad1234. An...

CVE-2017-16523

The CVE-2017-16523 entry describes an elevation-of-privilege issue in MitraStar router models MitraStar GPT-2541GNAC (HGU) 1.00(VNJ0)b1 and DSL-100HN-T1 ES_113WJY0b16. A Zyad1234 account password zyad1234 is undocumented and effectively grants root-level access. This vulnerability originates from...

CVE-2017-16522

CVE-2017-16522 affects MitraStar GPT-2541GNAC (HGU) and DSL-100HN-T1 devices (versions 1.00(VNJ0)b1 and ES_113WJY0b16). The vulnerability allows remote authenticated users to gain root access by specifying /bin/sh as the command to execute, indicating a privilege-escalation issue in the device co...