SmartNode SN200 Analog Telephone Adapter (ATA) & VoIP Gateway - Command Injection

The SmartNode SN200 Analog Telephone Adapter ATA & VoIP Gateway is vulnerable to command injection. id: CVE-2023-41109 info: name: SmartNode SN200 Analog Telephone Adapter ATA & VoIP Gateway - Command Injection author: princechaddha severity: critical description: | The SmartNode SN200 Analog...

CVE-2023-41109

SmartNode SN200 aka SN200 3.21.2-23021 allows unauthenticated OS Command Injection...

VulnCheck KEV: CVE-2023-41109

SmartNode SN200 aka SN200 3.21.2-23021 allows unauthenticated OS Command Injection...

The vulnerability of the Network Diagnostic Commands function in the microprogramming software of the SmartNode SN200 adapter allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Network Diagnostic Commands function in the microprogramming software of the SmartNode SN200 adapter lies in the lack of measures taken to neutralize the special elements used in the operating system commands. Exploiting this vulnerability can allow a remote attacker to...

SmartNode SN200 3.21.2-23021 OS Command Injection

Advisory ID: SYSS-2023-019 Product: SmartNode SN200 Analog Telephone Adapter ATA & VoIP Gateway Manufacturer: Patton LLC Affected Versions: = 3.21.2-23021 Tested Versions: 2.21.1-22041, 3.21.2-23021, 3.22.0-23083 Vulnerability Type: OS Command Injection CWE-78 Vulnerability Type: Improper Access...

SmartNode SN200 3.21.2-23021 OS Command Injection Vulnerability

Product: SmartNode SN200 Analog Telephone Adapter ATA & VoIP Gateway Manufacturer: Patton LLC Affected Versions: = 3.21.2-23021 Tested Versions: 2.21.1-22041, 3.21.2-23021, 3.22.0-23083 Vulnerability Type: OS Command Injection CWE-78 Vulnerability Type: Improper Access Control CWE-284 Risk Level:...

CVE-2023-41109

SmartNode SN200 aka SN200 3.21.2-23021 allows unauthenticated OS Command Injection...

CVE-2023-41109

SmartNode SN200 aka SN200 3.21.2-23021 allows unauthenticated OS Command Injection...

CVE-2023-41109

SmartNode SN200 aka SN200 3.21.2-23021 allows unauthenticated OS Command Injection...

Command injection

SmartNode SN200 aka SN200 3.21.2-23021 allows unauthenticated OS Command Injection...

PT-2023-8337 · Unknown · Smartnode Sn200

Name of the Vulnerable Software and Affected Versions: SmartNode SN200 aka SN200 version 3.21.2-23021 Description: The issue is related to the Network Diagnostic Commands function of the SmartNode SN200 analog telephone adapter's firmware, which fails to neutralize special elements used in an...

CVE-2023-41109

The SmartNode SN200 Analog Telephone Adapter / VoIP Gateway (firmware 3.21.2-23021 and earlier) is affected by an unauthenticated OS command injection (CWE-78). Public advisories (SySS SYSS-2023-019) and PT-2023-8337 indicate the vulnerability stems from improper handling in the Network Diagnosti...

CVE-2023-41109

SmartNode SN200 aka SN200 3.21.2-23021 allows unauthenticated OS Command Injection...

SySS SmartNode SN200 操作系统命令注入漏洞

SySS SmartNode SN200 is a smart node from SySS. A security vulnerability exists in SySS SmartNode SN200 version 3.21.2-23021 that originates from allowing an unauthenticated attacker to perform operating system command injection...