Authenticated user can execute arbitrary commands in the context of the root user by providing payload in the "destination" field of the network test tools. This is similar to the vulnerability CVE-2021-28151 mitigated on the user interface level by blacklisting characters with JavaScript, however, it can still be exploited by sending POST requests directly.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HHongdian H8951 4g Esp
HWHongdianwszystkie wersjeHongdian H8951 4g Esp Firmware
OSHongdian< 2310271149
Powiązane podatności
Hardkodowane hasło roota w urządzeniu Hongdian H8951-4G-Esp
Hongdian H8951-4G-Esp — dostęp do konsoli routera bez uwierzytelnienia
Pominięcie uwierzytelnienia przez przepełnienie pola Cookie w Hongdian H8951-4G-Esp
An authenticated user is able to upload an arbitrary CGI-compatible file using the certificate upload utility ...
The authentication cookies are generated using an algorithm based on the username, hardcoded secret and the up...