Unauthenticated remote code execution in OPTILINK OP-XT71000N, Hardware Version: V2.2 occurs when the attacker passes arbitrary commands with IP-ADDRESS using " | " to execute commands on " /diag_tracert_admin.asp " in the "PingTest" parameter that leads to command execution.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/huzaifahussain98/CVE-2020-23584 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-11-23T00:00:00
Updated: 2024-08-04T14:58:15.186Z
Reserved: 2020-08-13T00:00:00
Link: CVE-2020-23584
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-11-23T02:15:09.070
Modified: 2022-11-23T20:29:26.837
Link: CVE-2020-23584
Redhat
No data.