Security Advisory

CVE-2017-14127

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-09-04 20:00:00

Last updated 2024-08-05 19:20:39

Assigner mitre

State PUBLISHED

Description

Command Injection in the Ping Module in the Web Interface on Technicolor TD5336 OI_Fw_v7 devices allows remote attackers to execute arbitrary OS commands as root via shell metacharacters in the pingAddr parameter to mnt_ping.cgi.

← Browse all CVEs View on cve.org ↗