Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A command injection vulnerability exists in the Infinxt iEdge 100 2.1.32 in the Troubleshoot module "MTR" functionality. The vulnerability is due to improper validation of user-supplied input in the mtrIp parameter. An attacker can exploit this flaw to execute arbitrary operating system commands on the underlying system with the same privileges as the web application process.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Infinxt iEdge 100 安全漏洞
Vulnerability Description
Infinxt iEdge 100是Infinxt公司的一款适用于中小型分支机构的下一代安全 SD-WAN 设备。 Infinxt iEdge 100 2.1.32版本存在安全漏洞,该漏洞源于Troubleshoot模块MTR功能中对mtrIp参数的用户输入验证不当,可能导致执行任意操作系统命令。
CVSS Information
N/A
Vulnerability Type
N/A