CVE-2020-23584

Unauthenticated remote code execution in OPTILINK OP-XT71000N, Hardware Version: V2.2 occurs when the attacker passes arbitrary commands with IP-ADDRESS using " | " to execute commands on " /diag_tracert_admin.asp " in the "PingTest" parameter that leads to command execution.
References
Link Resource
https://github.com/huzaifahussain98/CVE-2020-23584 Third Party Advisory
Configurations

Configuration 1


Information

Published : 2022-11-23 02:15

Updated : 2022-11-23 08:29


NVD link : CVE-2020-23584

Mitre link : CVE-2020-23584

Products Affected
No products.
CWE