Box 2 Firmware@2.1.47.42 Security Vulnerabilities and Issues — Box 2 Firmware@2.1.47.42 CVE List

Lucene search

BitdefenderBox 2 Firmware2.1.47.42

1 matches found

CVE•added 2020/01/27 6:15 p.m.•51 views

CVE-2019-17095

A command injection vulnerability has been discovered in the bootstrap stage of Bitdefender BOX 2, versions 2.1.47.42 and 2.1.53.45. The API method /api/download_image unsafely handles the production firmware URL supplied by remote servers, leading to arbitrary execution of system commands. In orde...

10CVSS9.3AI score0.04414EPSS