| |
Vulnerability CVE-2022-30310
Published: 2022-06-13
| Description: |
In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-acknerr-request" POST request doesn??????t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection. |
Type:
CWE-78 (Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
)
References: |
https://cert.vde.com/en/advisories/VDE-2022-020/
|
|
|
Copyright 2026, cxsecurity.com
|
|
|
