Lucene search
K

5 matches found

OSV
OSV
added 2019/11/26 3:15 p.m.4 views

CVE-2019-12489

An issue was discovered on Fastweb Askey RTV1907VW 0.00.81FW200Askey 2018-10-02 18:08:18 devices. By using the usbremove service through an HTTP request, it is possible to inject and execute a command between two & characters in the mount parameter...

9.8CVSS5.8AI score0.06234EPSS
Exploits1References2
NVD
NVD
added 2019/11/26 3:15 p.m.18 views

CVE-2019-12489

An issue was discovered on Fastweb Askey RTV1907VW 0.00.81FW200Askey 2018-10-02 18:08:18 devices. By using the usbremove service through an HTTP request, it is possible to inject and execute a command between two & characters in the mount parameter...

10CVSS9.6AI score0.06234EPSS
Exploits1References2
Prion
Prion
added 2019/11/26 3:15 p.m.16 views

Command injection

An issue was discovered on Fastweb Askey RTV1907VW 0.00.81FW200Askey 2018-10-02 18:08:18 devices. By using the usbremove service through an HTTP request, it is possible to inject and execute a command between two & characters in the mount parameter...

10CVSS9.4AI score0.06234EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2019/11/26 2:42 p.m.21 views

CVE-2019-12489

An issue was discovered on Fastweb Askey RTV1907VW 0.00.81FW200Askey 2018-10-02 18:08:18 devices. By using the usbremove service through an HTTP request, it is possible to inject and execute a command between two & characters in the mount parameter...

9.6AI score0.06234EPSS
Exploits1References2
CVE
CVE
added 2019/11/26 2:42 p.m.48 views

CVE-2019-12489

The connected CNVD entry confirms a concrete vulnerability in Fastweb Askey RTV1907VW devices (version 0.00.81_FW_200_Askey 2018-10-02 18:08:18) where the usb_remove service, invoked over HTTP, allows injecting and executing commands within the mount parameter. This is described as a command‑inje...

10CVSS9.5AI score0.06234EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder