Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Verizon 5G Home LVSKIHP InDoorUnit (IDU) 3.4.66.162 does not properly sanitize user-controlled parameters within the crtcreadpartition function of the crtcrpc JSON listener in /usr/lib/lua/luci/crtc.lua. A remote attacker on the local network can inject shell metacharacters to achieve remote code execution as root.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Verizon 5G Home LVSKIHP 操作系统命令注入漏洞
Vulnerability Description
Verizon 5G Home LVSKIHP是美国Verizon公司的一款一体化集成调制解调器和路由器。可提供对 Verizon Wireless 5G 无线家庭互联网服务的访问。 Verizon 5G Home LVSKIHP InDoorUnit (IDU) 3.4.66.162版本存在安全漏洞,该漏洞源于没有正确处理/usr/lib/lua/luci/crtc.lua中crtcrpc JSON监听器的crtcreadpartition函数中用户控制的参数。本地网络上的远程攻击者可以注入shell元
CVSS Information
N/A
Vulnerability Type
N/A