Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Three os command injection vulnerabilities exist in the boa formWsc functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to arbitrary command execution. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This command injection is related to the `peerPin` request's parameter.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Vulnerability Title
Realtek rtl819x Jungle SDK 操作系统命令注入漏洞
Vulnerability Description
Realtek rtl819x Jungle SDK是中国瑞昱半导体(Realtek)公司的一个无线局域网芯片的驱动程序。 Realtek rtl819x Jungle SDK v3.4.11 版本存在操作系统命令注入漏洞,该漏洞源于 boa formWsc 功能中存在操作系统命令注入漏洞。
CVSS Information
N/A
Vulnerability Type
N/A