Command injection vulnerability in Aqara Hub devices including Camera Hub G3 4.1.9_0027, Hub M2 4.3.6_0027, and Hub M3 4.3.6_0025 allows attackers to execute arbitrary commands with root privileges through malicious domain names.
oryginał ENCVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:HAqara Camera Hub G3
HWAqarawszystkie wersjeAqara Camera Hub G3 Firmware
OSAqara4.1.9_0027Aqara Hub M2
HWAqarawszystkie wersjeAqara Hub M2 Firmware
OSAqara4.3.6_0027Aqara Hub M3
HWAqarawszystkie wersjeAqara Hub M3 Firmware
OSAqara4.3.6_0025
Powiązane podatności
Aqara Hub — nieudokumentowany mechanizm zdalnego wykonania poleceń (RCE)
Aqara Hub devices including Hub M2 4.3.6_0027, Hub M3 4.3.6_0025, Camera Hub G3 4.1.9_0027 fail to validate se...
Aqara Hub devices including Camera Hub G3 4.1.9_0027, Hub M2 4.3.6_0027, and Hub M3 4.3.6_0025 fail to validat...
Multiple vulnerabilities in Aqara Hub firmware update process in the Camera Hub G3 4.1.9_0027, Hub M2 4.3.6_00...
Aqara Hub devices including Camera Hub G3 4.1.9_0027, Hub M2 4.3.6_0027, and Hub M3 4.3.6_0025 automatically c...