Description

Akuvox C315 115.116.2613 allows remote command Injection via the cfgd_server service. The attack vector is sending a payload to port 189 (default root 0.0.0.0).

Related CPE's

o

akuvox

c315_firmware

115.116.2613

Vulnerable

h

akuvox

c315

-

References

https://pastebin.com/yv4ajFjD

Third Party Advisory

https://www.akuvox.com/ProductsDisp.aspx?pid=21

Vendor Advisory

Weaknesses

[email protected]

Primary
CWE-77

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.8 · Critical

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2021-04-25T19:15:08.137

4 years ago

Last modified

2021-05-06T20:33:37.857

4 years ago