Assigner | twcert |
Reserved | 2024-05-27 |
Published | 2024-05-27 |
Updated | 2024-06-06 |
Description
ASKEY 5G NR Small Cell fails to properly filter user input for certain functionality, allowing remote attackers with administrator privilege to execute arbitrary system commands on the remote server.
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H |
Problem types
CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Product status
nsc 2.1 V6
References
https://www.twcert.org.tw/tw/cp-132-7821-87e38-1.html