CVE-2023-49257
8.8HIGHAn authenticated user is able to upload an arbitrary CGI-compatible file using the certificate upload utility and execute it with the root user privileges.
Publicado: 1/12/2024Actualizado: 6/11/2025
Descripción
An authenticated user is able to upload an arbitrary CGI-compatible file using the certificate upload utility and execute it with the root user privileges.
Análisis IAImpulsado por IA
Productos Afectados
hongdianh8951-4g-esp_firmware
hongdianh8951-4g-esp
-
Referencias
- https://cert.pl/en/posts/2024/01/CVE-2023-49253/Third Party Advisory
- https://cert.pl/posts/2024/01/CVE-2023-49253/Third Party Advisory
- https://cert.pl/en/posts/2024/01/CVE-2023-49253/Third Party Advisory
- https://cert.pl/posts/2024/01/CVE-2023-49253/Third Party Advisory