CVE-2019-6013

Name of the Vulnerable Software and Affected Versions DBA-1510P firmware version 1.70b009 and earlier

Description The issue allows authenticated attackers to execute arbitrary OS commands via the Command Line Interface (CLI). This is due to the lack of measures to neutralize special elements used in the OS command. Exploitation of the issue may allow a remote attacker to execute arbitrary OS commands.

Recommendations For DBA-1510P firmware version 1.70b009 and earlier, consider disabling access to the Command Line Interface (CLI) until a patch is available. Restrict access to the CLI to minimize the risk of exploitation. Avoid using the CLI for executing OS commands until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.