Security Advisory

CVE-2021-45876

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-03-21 10:27:40

Last updated 2024-08-04 04:54:31

Assigner mitre

State PUBLISHED

Description

Multiple versions of GARO Wallbox GLB/GTB/GTC are affected by unauthenticated command injection. The url parameter of the function module downloadAndUpdate is vulnerable to an command Injection. Unfiltered user input is used to generate code which then gets executed when downloading new firmware.

← Browse all CVEs View on cve.org ↗