Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple versions of GARO Wallbox GLB/GTB/GTC are affected by unauthenticated command injection. The url parameter of the function module downloadAndUpdate is vulnerable to an command Injection. Unfiltered user input is used to generate code which then gets executed when downloading new firmware.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
GARO Wallbox GLB/GTB/GTC 命令注入漏洞
Vulnerability Description
GARO Wallbox GLB/GTB/GTC是瑞典GARO公司的一种电动汽车充电器。 GARO Wallbox GLB/GTB/GTC 存在安全漏洞,该漏洞源于功能模块downloadAndUpdate的url参数容易被命令注入。未经过滤的用户输入生成代码利用该漏洞然后在下载新固件时执行该代码。
CVSS Information
N/A
Vulnerability Type
N/A