First published: Wed Nov 23 2022(Updated: )
Unauthenticated remote code execution in OPTILINK OP-XT71000N, Hardware Version: V2.2 occurs when the attacker passes arbitrary commands with IP-ADDRESS using " | " to execute commands on " /diag_tracert_admin.asp " in the "PingTest" parameter that leads to command execution.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Optilinknetwork Op-xt71000n Firmware | =3.3.1-191028 | |
Optilinknetwork Op-xt71000n | =2.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.