漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Command-injection Vulnerability in Certificate Management
Vulnerability Description
TN-4900 Series firmware versions v1.2.4 and prior and TN-5900 Series firmware versions v3.3 and prior are vulnerable to the command injection vulnerability. This vulnerability stems from inadequate input validation in the certificate management function, which could potentially allow malicious users to execute remote code on affected devices.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Vulnerability Title
MOXA TN-4900 命令注入漏洞
Vulnerability Description
MOXA TN-4900是中国摩莎(MOXA)公司的一系列工业防火墙路由器。 MOXA TN-4900 v1.2.4 版本之前存在安全漏洞,该漏洞源于证书管理功能中的输入验证不足,这可能允许恶意用户在受影响的设备上执行远程代码。
CVSS Information
N/A
Vulnerability Type
N/A