S1Nec

**Name of the Vulnerable Software and Affected Versions** Keyfactor RG-EW5100BE EW 3.0B11P280 EW5100BE-PRO 12183019 **Description** A flaw exists in Keyfactor RG-EW5100BE EW 3.0B11P280 EW5100BE-PRO 12183019. The issue is related to command injection stemming from the manipulation of the `url` argument within a HTTP POST request handler. The affected element is located in the file `/cgi-bin/luci/api/cmd` and involves an unknown function. The attack can be initiated remotely, and the exploit is publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.