CVE-2020-21937: OS Command Injection
First published: Wed Jul 21 2021(Updated: )
An command injection vulnerability in HNAP1/SetWLanApcliSettings of Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n allows attackers to execute arbitrary system commands.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Motorola Cx2 Firmware | =1.0.2-build_20190508 | |
| Motorola CX2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2020-21937?
The severity of CVE-2020-21937 is critical with a CVSS score of 9.8.
What is the affected software for CVE-2020-21937?
The affected software for CVE-2020-21937 is the Motorola CX2 router with firmware version 1.0.2 Build 20190508.
How does CVE-2020-21937 impact the affected software?
CVE-2020-21937 allows attackers to execute arbitrary system commands on the affected Motorola CX2 router.
Is Motorola CX2 vulnerable to CVE-2020-21937?
Yes, the Motorola CX2 router with firmware version 1.0.2 Build 20190508 is vulnerable to CVE-2020-21937.
How can I mitigate the CVE-2020-21937 vulnerability?
To mitigate the CVE-2020-21937 vulnerability, it is recommended to update the firmware of the Motorola CX2 router to a non-vulnerable version if available or apply any patches or fixes provided by the vendor.
- collector/nvd-index
- vendor/motorola
- canonical/motorola cx2 firmware
- version/motorola cx2 firmware/1.0.2-build_20190508
- canonical/motorola cx2