Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
ZTE MF258 Pro product has a OS Command injection vulnerability
Vulnerability Description
There is a command injection vulnerability in ZTE MF258 Pro product. Due to insufficient validation of Ping Diagnosis interface parameter, an authenticated attacker could use the vulnerability to execute arbitrary commands.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
输入验证不恰当
Vulnerability Title
ZTE MF258 Pro 安全漏洞
Vulnerability Description
ZTE MF258 Pro是中国中兴通讯(ZTE)公司的一款桌面路由器。 ZTE MF258 Pro 1.0.0B03版本存在安全漏洞,该漏洞源于Ping诊断接口参数验证不足,导致存在命令注入漏洞。
CVSS Information
N/A
Vulnerability Type
N/A