Podatność CVE-2019-1652

Podatność CVE-2019-1652

Publikacja: 2019-01-24

Opis:

	Tytuł	Autor	Data
High	Cisco RV320 Command Injection	CGI	24.01.2019

Typ:

(Improper Input Validation)

Ogólna skala CVSS	Znaczenie	Łatwość wykorzystania
9/10	10/10	8/10

Affected software
Cisco -> Rv320 firmware
Cisco -> Rv325 firmware

http://packetstormsecurity.com/files/152262/Cisco-RV320-Command-Injection.html

http://packetstormsecurity.com/files/152305/Cisco-RV320-RV325-Unauthenticated-Remote-Code-Execution.html

http://seclists.org/fulldisclosure/2019/Mar/61

http://www.securityfocus.com/bid/106728

https://seclists.org/bugtraq/2019/Mar/55

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190123-rv-inject

https://www.exploit-db.com/exploits/46243/

https://www.exploit-db.com/exploits/46655/