Netis WF2471 v1.2.30142 devices allow an authenticated attacker to execute arbitrary OS commands via shell metacharacters in the /cgi-bin-igd/sys_log_clean.cgi log_3g_type parameter.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2020-02-12T17:29:52
Updated: 2024-08-04T10:12:11.101Z
Reserved: 2020-02-12T00:00:00
Link: CVE-2020-8946
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-02-12T18:15:10.533
Modified: 2024-11-21T05:39:43.120
Link: CVE-2020-8946
Redhat
No data.