CVE-2018-13318

Publication date

2018-11-26 22:00:00

Family

mitre

State

PUBLISHED

Description

System command injection in User.create method in Buffalo TS5600D1206 version 3.61-0.10 allows attackers to execute system commands via the "name" parameter.