RSS   Vulnerabilities for 'Passport 220 firmware'   RSS

2019-02-08
 
CVE-2019-7632

CWE-78
 

 
LifeSize Team, Room, Passport, and Networker 220 devices allow Authenticated Remote OS Command Injection, as demonstrated by shell metacharacters in the support/mtusize.php mtu_size parameter. The lifesize default password for the cli account may sometimes be used for authentication.

 

 >>> Vendor: Lifesize 8 Products
Lifesize room appliance software
Networker 220 firmware
Passport 220 firmware
Room 220 firmware
Team 220 firmware
Icon 300 firmware
Icon 500 firmware
Icon 700 firmware


Copyright 2024, cxsecurity.com

 

Back to Top