Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered on Mimosa Client Radios before 2.2.4 and Mimosa Backhaul Radios before 2.2.4. On the backend of the device's web interface, there are some diagnostic tests available that are not displayed on the webpage; these are only accessible by crafting a POST request with a program like cURL. There is one test accessible via cURL that does not properly sanitize user input, allowing an attacker to execute shell commands as the root user.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mimosa Client Radios和Mimosa Backhaul Radios 安全漏洞
Vulnerability Description
Mimosa Client Radios和Mimosa Backhaul Radios都是美国Mimosa Networks公司的产品。Mimosa Client Radios是一个Mimosa多点解决方案的客户端设备的管理程序。Mimosa Backhaul Radios是一个宽带回程设备的管理程序。 Mimosa Client Radios 2.2.4之前的版本和Mimosa Backhaul Radios 2.2.4之前的版本中存在安全漏洞。攻击者可利用该漏洞以root用户身份执行shell命令。
CVSS Information
N/A
Vulnerability Type
N/A