CVE-2023-49038
7.2HIGHCommand injection in the ping utility on Buffalo LS210D 1.78-0.03 allows a remote authenticated attacker to inject arbitrary commands onto the NAS as root.
Publicado: 1/29/2024Actualizado: 6/2/2025
Descripción
Command injection in the ping utility on Buffalo LS210D 1.78-0.03 allows a remote authenticated attacker to inject arbitrary commands onto the NAS as root.
Análisis IAImpulsado por IA
Productos Afectados
buffalols210d_firmware
1.78-0.03
buffalols210d
-
Referencias
- https://github.com/christopher-pace/CVE-2023-49038ExploitThird Party Advisory
- https://github.com/christopher-pace/CVE-2023-49038ExploitThird Party Advisory