2025-05-15 08:48:12
jpcert
PUBLISHED
Improper neutralization of special elements used in an OS command (OS Command Injection) issue exists in I-O DATA network attached hard disk HDL-T Series firmware Ver.1.21 and earlier when Remote Link3 function is enabled. If exploited, a remote unauthenticated attacker may execute an arbitrary OS command.