CVE-2022-33328

Multiple command injection vulnerabilities exist in the web_server ajax endpoints functionalities of Robustel R1510 3.3.0. A specially-crafted network packets can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these vulnerabilities.The `/ajax/remove/` API is affected by a command injection vulnerability.
References
Link Resource
https://talosintelligence.com/vulnerability_reports/TALOS-2022-1573 Exploit Third Party Advisory
Configurations

Configuration 1


Information

Published : 2022-06-30 07:15

Updated : 2022-07-12 08:04


NVD link : CVE-2022-33328

Mitre link : CVE-2022-33328

Products Affected
No products.
CWE