Description
Arris TR3300 v1.0.13 was discovered to contain a command injection vulnerability in the wps setting function via the wps_enrolee_pin parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
No advisories yet.
References
History
No history.
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-03T05:18:39.298Z
Reserved: 2022-03-14T00:00:00.000Z
Link: CVE-2022-26998
No data.
Status : Modified
Published: 2022-03-15T22:15:15.097
Modified: 2026-06-17T04:36:17.200
Link: CVE-2022-26998
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-77
Improper Neutralization of Special Elements used in a Command ('Command Injection')