Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Jointelli 5G CPE 21H01 firmware JY_21H01_A3_v1.36 devices allow (blind) OS command injection. Multiple endpoints are vulnerable, including /ubus/?flag=set_WPS_pin and /ubus/?flag=netAppStar1 and /ubus/?flag=set_wifi_cfgs. This allows an authenticated attacker to execute arbitrary OS commands with root privileges via crafted inputs to the SSID, WPS, Traceroute, and Ping fields.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Jointelli 5G CPE 21H01 安全漏洞
Vulnerability Description
Jointelli 5G CPE 21H01是中国Jointelli公司的一款路由器。 Jointelli 5G CPE 21H01 JY_21H01_A3_v1.36版本存在安全漏洞,该漏洞源于多个端点存在OS命令注入,可能导致执行任意命令。
CVSS Information
N/A
Vulnerability Type
N/A