Netis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability via the ddnsDomainName parameter in the Dynamic DNS settings.
oryginał ENCVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HNetis Systems N3m
HWNetis-Systemsv2Netis Systems N3m Firmware
OSNetis-Systems1.0.1.865
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Powiązane podatności
CVE-2023-45466CRITICAL9.8ten sam produkt
Netis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability via the pin_host parameter ...
CVE-2023-45467CRITICAL9.8ten sam produkt
Netis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability via the ntpServIP parameter...
CVE-2023-43891CRITICAL9.8ten sam produkt
Netis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability in the Changing Username an...
CVE-2023-43892CRITICAL9.8ten sam produkt
Netis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability via the Hostname parameter ...
CVE-2023-43893CRITICAL9.8ten sam produkt
Netis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability via the wakeup_mac paramete...