Vulnerability CVE-2022-38841


Published: 2023-04-16

Description:
Linksys AX3200 1.1.00 is vulnerable to OS command injection by authenticated users via shell metacharacters to the diagnostics traceroute page.

See advisories in our WLB2 database:
Topic
Author
Date
Med.
Linksys AX3200 V1.1.00 Command Injection
Ahmed Alroky
22.03.2023

Type:

CWE-78

(Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') )

 References:
https://drive.google.com/drive/folders/1rAa4zzJPwMop0AEMiI2NKqUaZno7Ccqb?usp=sharing
http://packetstormsecurity.com/files/171433/Linksys-AX3200-1.1.00-Command-Injection.html

Copyright 2024, cxsecurity.com

 

Back to Top