Description
Command injection vulnerability in China Mobile An Lianbao WF-1 1.01 via the 'ip' parameter with a POST request to /api/ZRQos/set_online_client.
References
Product
https://www.zhipinmall.com/prodetail?id=1266#skuId=3020
Third Party Advisory
Product
https://www.zhipinmall.com/prodetail?id=1266#skuId=3020
Third Party Advisory
CVSS impact metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 · Critical
Information
Source identifier
Vulnerability status
Modified
Published
2021-04-29T14:15:09.873Z
4 years agoLast modified
2024-11-21T04:55:28.863Z
1 year ago