CRITICAL🇵🇱 Wersja polska

CVE-2022-29337

CVSS 9.8v3.1pub. 2022-05-24upd. 2024-11-21

C-DATA FD702XW-X-R430 v2.1.13_X001 was discovered to contain a command injection vulnerability via the va_cmd parameter in formlanipv6. This vulnerability allows attackers to execute arbitrary commands via a crafted HTTP request.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Cdatatec Fd702xw X R430

    HW
    Cdatatec
    wszystkie wersje
  • Cdatatec Fd702xw X R430 Firmware

    OS
    Cdatatec
    2.1.13_x001
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Command Injection
CWE
References

Related vulnerabilities

CVE-2020-29058CRITICAL9.8ten sam vendor

An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97...

CVE-2020-29059CRITICAL9.8ten sam vendor

An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97...

CVE-2020-29056CRITICAL9.8ten sam vendor

An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97...

CVE-2020-29054CRITICAL9.8ten sam vendor

An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97...

CVE-2020-29060CRITICAL9.8ten sam vendor

An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97...