Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
QNO Technology|VPN Firewall - OS Command Injection
Vulnerability Description
VPN Firewall developed by QNO Technology has an OS Command Injection vulnerability, allowing authenticated remote attackers to inject arbitrary OS commands and execute them on the server.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Vulnerability Title
QNO VPN Firewall 操作系统命令注入漏洞
Vulnerability Description
QNO VPN Firewall是中国台湾侠诺(QNO)公司的一个多功能安全网关。 QNO VPN Firewall存在操作系统命令注入漏洞,该漏洞源于OS命令注入,可能导致经过身份验证的远程攻击者在服务器上执行任意OS命令。
CVSS Information
N/A
Vulnerability Type
N/A