CVE-2023-49257
8.8HIGHAn authenticated user is able to upload an arbitrary CGI-compatible file using the certificate upload utility and execute it with the root user privileges.
Veröffentlicht: 1/12/2024Aktualisiert: 6/11/2025
Beschreibung
An authenticated user is able to upload an arbitrary CGI-compatible file using the certificate upload utility and execute it with the root user privileges.
KI-AnalyseKI-gestützt
Betroffene Produkte
hongdianh8951-4g-esp_firmware
hongdianh8951-4g-esp
-
Referenzen
- https://cert.pl/en/posts/2024/01/CVE-2023-49253/Third Party Advisory
- https://cert.pl/posts/2024/01/CVE-2023-49253/Third Party Advisory
- https://cert.pl/en/posts/2024/01/CVE-2023-49253/Third Party Advisory
- https://cert.pl/posts/2024/01/CVE-2023-49253/Third Party Advisory