Lucene search
K

4 matches found

BDU FSTEC
BDU FSTEC
added 2022/07/08 12:0 a.m.10 views

The vulnerability of the statussupport_diagnostic_tracing.json component of the SerComm h500s router software allows a hacker to execute arbitrary commands.

The vulnerability of the statussupportdiagnostictracing.json component of the SerComm h500s router software exists due to the lack of measures taken to neutralize special elements used in the operating system command. Exploiting this vulnerability allows a remote attacker to execute arbitrary...

10CVSS7.5AI score0.23666EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2022/06/02 2:15 p.m.13 views

CVE-2021-44080

A Command Injection vulnerability in httpd web server setup.cgi in SerComm h500s, FW: lowi-h500s-v3.4.22 allows logged in administrators to arbitrary OS commands as root in the device via the connectiontype parameter of the statussupportdiagnostictracing.json endpoint...

9CVSS0.23666EPSS
Exploits1References2
Prion
Prion
added 2022/06/02 2:15 p.m.17 views

Command injection

A Command Injection vulnerability in httpd web server setup.cgi in SerComm h500s, FW: lowi-h500s-v3.4.22 allows logged in administrators to arbitrary OS commands as root in the device via the connectiontype parameter of the statussupportdiagnostictracing.json endpoint...

9CVSS7.3AI score0.23666EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/06/01 12:45 a.m.18 views

CVE-2021-44080

A Command Injection vulnerability in httpd web server setup.cgi in SerComm h500s, FW: lowi-h500s-v3.4.22 allows logged in administrators to arbitrary OS commands as root in the device via the connectiontype parameter of the statussupportdiagnostictracing.json endpoint...

7.5AI score0.23666EPSS
Exploits1References2
Rows per page
Query Builder