Command injection vulnerability in MZK-MF300N all firmware versions allows a network-adjacent unauthenticated attacker to execute an arbitrary command by sending a specially crafted request to a certain port.
[
{
"cpes": [
"cpe:2.3:o:planex:mzk-mf300n_firmware:*:*:*:*:*:*:*:*"
],
"vendor": "planex",
"product": "mzk-mf300n_firmware",
"versions": [
{
"status": "affected",
"version": "0",
"versionType": "custom",
"lessThanOrEqual": "*"
}
],
"defaultStatus": "unknown"
}
]