Update CVE-2020-13117.yaml

patch-1
Prince Chaddha 2021-07-24 11:39:47 +05:30 committed by GitHub
parent f60a9ed891
commit 31f62d59ce
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 1 deletions

View File

@ -5,9 +5,9 @@ info:
author: gy741
severity: critical
description: Several Wavlink products are affected by a vulnerability that may allow remote unauthenticated users to execute arbitrary commands as root on Wavlink devices. The user input is not properly sanitized which allows command injection via the "key" parameter in a login request. It has been tested on Wavlink WN575A4 and WN579X3 devices, but other products may be affected.
tags: cve,cve2020,wavlink,rce,oob
reference:
- https://blog.0xlabs.com/2021/02/wavlink-rce-CVE-2020-13117.html
tags: cve,cve2020,wavlink,rce,oob
requests:
- raw: