CVE-2023-49257
8.8HIGHAn authenticated user is able to upload an arbitrary CGI-compatible file using the certificate upload utility and execute it with the root user privileges.
Published: 1/12/2024Updated: 6/11/2025
Description
An authenticated user is able to upload an arbitrary CGI-compatible file using the certificate upload utility and execute it with the root user privileges.
AI AnalysisPowered by AI
Affected Products
hongdianh8951-4g-esp_firmware
hongdianh8951-4g-esp
-
References
- https://cert.pl/en/posts/2024/01/CVE-2023-49253/Third Party Advisory
- https://cert.pl/posts/2024/01/CVE-2023-49253/Third Party Advisory
- https://cert.pl/en/posts/2024/01/CVE-2023-49253/Third Party Advisory
- https://cert.pl/posts/2024/01/CVE-2023-49253/Third Party Advisory