An OS command injection vulnerability exists in the Web Manager Diagnostics: Traceroute functionality of Lantronix PremierWave 2050 8.9.0.0R4. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:HLantronix Premierwave 2050
HWLantronixwszystkie wersjeLantronix Premierwave 2050 Firmware
OSLantronix8.9.0.0
Related vulnerabilities
A specially-crafted HTTP request can lead to arbitrary command execution in DSA keypasswd parameter. An attack...
A specially-crafted HTTP request can lead to arbitrary command execution in EC keypasswd parameter. An attacke...
Specially-crafted HTTP requests can lead to arbitrary command execution in PUT requests. An attacker can make ...
Specially-crafted HTTP requests can lead to arbitrary command execution in “GET” requests. An attacker can mak...
A specially-crafted HTTP request can lead to arbitrary command execution in RSA keypasswd parameter. An attack...