daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Auto Generated CVE annotations [Wed May 18 08:55:27 UTC 2022] 🤖

patch-1
GitHub Action 2022-05-18 08:55:27 +00:00
parent f230320939
commit cf1a9724f4
1 changed files with 8 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
cves/2021/CVE-2021-46422.yaml
View File

@ -3,14 +3,20 @@ id: CVE-2021-46422
info: info:
name: SDT-CW3B1 1.1.0 - OS command injection name: SDT-CW3B1 1.1.0 - OS command injection
author: remote author: remote
severity: high severity: critical
description: |
Telesquare SDT-CW3B1 1.1.0 is affected by an OS command injection vulnerability that allows a remote attacker to execute OS commands without any authentication.
reference: reference:
- https://www.exploit-db.com/exploits/50936 - https://www.exploit-db.com/exploits/50936
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46422 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46422
- https://drive.google.com/drive/folders/1YJlVlb4SlTEGONzIjiMwd2P7ucP_Pm7T?usp=sharing
classification: classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2021-46422 cve-id: CVE-2021-46422
cwe-id: CWE-78
metadata: metadata:
verified: false verified: "false"
tags: cve,cve2021,injection,rce tags: cve,cve2021,injection,rce
variables: variables: