Security Advisory

CVE-2023-50382

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-07-08 15:22:23

Last updated 2025-11-04 17:13:32

Assigner talos

State PUBLISHED

Description

Three os command injection vulnerabilities exist in the boa formWsc functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to arbitrary command execution. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This command injection is related to the `peerPin` requests parameter.

← Browse all CVEs View on cve.org ↗