Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Improper input sanitization within the restricted administration shell on UCOPIA Wireless Appliance devices before 4.4.20, 5.0.x before 5.0.19, and 5.1.x before 5.1.11 allows authenticated remote attackers to escape the shell and escalate their privileges by uploading a .bashrc file containing the /bin/sh string. In some situations, authentication can be achieved via the bhu85tgb default password for the admin account.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
UCOPIA Wireless Appliance 安全漏洞
Vulnerability Description
UCOPIA Wireless Appliance是法国UCOPIA公司的一款无线设备。 UCOPIA Wireless Appliance 4.4.20之前的版本、5.0.19之前的5.0.x版本和5.1.11之前的5.1.x版本中被限制的管理shell存在安全漏洞,该漏洞源于程序没有正确的过滤输入。远程攻击者可通过上传带有/bin/sh字符串的.bashrc文件利用该漏洞绕过shell并提升权限。
CVSS Information
N/A
Vulnerability Type
N/A