Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Authenticated Remote Command Injection in Delta Electronics DVW
Vulnerability Description
The Delta Electronics DVW-W02W2-E2 devices expose a web administration interface to users. This interface implements multiple features that are affected by command injections and stack overflows vulnerabilities. Successful exploitation of these flaws would allow remote unauthenticated attackers to gain remote code execution with elevated privileges on the affected devices. This issue affects DVW-W02W2-E2 through version 2.5.2.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
在命令中使用的特殊元素转义处理不恰当(命令注入)
Vulnerability Title
Delta Electronics DVW-W02W2-E2 安全漏洞
Vulnerability Description
Delta Electronics DVW-W02W2-E2是中国台达电子(Delta Electronics)公司的一个工业无线网络解决方案。 Delta Electronics DVW-W02W2-E2 2.5.2及之前版本存在安全漏洞,该漏洞源于存在命令注入和堆栈溢出,允许经过身份验证的远程攻击者在受影响的设备上以提升的权限远程执行命令。
CVSS Information
N/A
Vulnerability Type
N/A