Description

A command injection vulnerability in HNAP1/GetNetworkTomographySettings of Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n allows attackers to execute arbitrary code.

Related CPE's

o

motorola

cx2_firmware

1.0.2

build_20190508

Vulnerable

h

motorola

cx2

-

References

https://github.com/cc-crack/router/blob/master/motocx2.md

ExploitThird Party Advisory

https://l0n0l.xyz/post/motocx2/

ExploitThird Party Advisory

Weaknesses

[email protected]

Primary
CWE-78

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.8 · Critical

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2021-07-21T15:15:12.923

3 years ago

Last modified

2022-05-03T16:04:40.443

3 years ago