Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in Rakuten Turbo 5G firmware version V1.3.18 and earlier. If this vulnerability is exploited, a remote authenticated attacker may execute an arbitrary OS command.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Vulnerability Title
Rakuten Turbo 5G 安全漏洞
Vulnerability Description
Rakuten Turbo 5G是Rakuten公司的一款无需施工且可插入电源插座的家用路由器。 Rakuten Turbo 5G V1.3.18及之前版本存在安全漏洞,该漏洞源于存在操作系统命令注入,经过身份验证的攻击者可能会执行任意操作系统命令。
CVSS Information
N/A
Vulnerability Type
N/A