Vulnerability CVE-2022-32429


Published: 2022-08-10

Description:
An authentication-bypass issue in the component http://MYDEVICEIP/cgi-bin-sdb/ExportSettings.sh of Mega System Technologies Inc MSNSwitch MNT.2408 allows unauthenticated attackers to arbitrarily configure settings within the application, leading to remote code execution.

See advisories in our WLB2 database:
Topic
Author
Date
High
MSNSwitch Firmware MNT.2408 Remote Code Execution
Eli Fulkerson
12.11.2022

 References:
https://elifulkerson.com/CVE-2022-32429/

Copyright 2024, cxsecurity.com

 

Back to Top