Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
B2368-22 V100R001C00;B2368-57 V100R001C00;B2368-66 V100R001C00 have a command injection vulnerability. An attacker with high privileges may exploit this vulnerability through some operations on the LAN. Due to insufficient input validation of some parameters, the attacker can exploit this vulnerability to inject commands to the target device.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
华为多款产品代码注入漏洞
Vulnerability Description
Huawei B2368-22等都是中国华为(Huawei)公司的一款高性能室外CPE终端。 华为多个产品存在代码注入漏洞。拥有高权限的攻击者,需要在局域网通过一系列操作利用此漏洞。由于对部分参数没有做输入校验,攻击者成功利用这个漏洞后可以在目标设备上注入命令。
CVSS Information
N/A
Vulnerability Type
N/A