Security Advisory

CVE-2022-26999

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-03-15 21:56:31
Last updated 2024-08-03 05:18:39
Assigner mitre
State PUBLISHED

Description

Arris TR3300 v1.0.13 was discovered to contain a command injection vulnerability in the static ip settings function via the wan_ip_stat, wan_mask_stat, wan_gw_stat, and wan_dns1_stat parameters. This vulnerability allows attackers to execute arbitrary commands via a crafted request.