| |
Podatność CVE-2022-40282
Publikacja: 2022-11-25
| Opis: |
The web server of Hirschmann BAT-C2 before 09.13.01.00R04 allows authenticated command injection. This allows an authenticated attacker to pass commands to the shell of the system because the dir parameter of the FsCreateDir Ajax function is not sufficiently sanitized. The vendor's ID is BSECV-2022-21. |
W naszej bazie, znaleźliśmy następujące noty dla tego CVE: | Tytuł | Autor | Data |
Med. |
| T. Weber | 01.12.2022 |
Typ:
CWE-78 (Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
)
Referencje: |
https://www.belden.com/support/security-assurance
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
Polish
English