CVE-2017-12577

Posted on by admin

CVE-2017-12577

An issue was discovered on the PLANEX CS-QR20 1.30. A hardcoded account / password ("admin:password") is used in the Android application that allows attackers to use a hidden API URL "/goform/SystemCommand" to execute any command with root permission.

Source: CVE-2017-12577

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다