CVE-2018-5265

CVE-2018-5265

Ubiquiti EdgeOS 1.9.1 on EdgeRouter Lite devices allows remote attackers to execute arbitrary code with admin credentials, because /opt/vyatta/share/vyatta-cfg/templates/system/static-host-mapping/host-name/node.def does not sanitize the ‘alias’ or ‘ips’ parameter for shell metacharacters.

Source: CVE-2018-5265

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다