PT-2021-14195 · Unknown+4 · Wrc-733Febk+8

Chuya Hayakawa

Published

2021-07-07

Updated

2021-07-10

CVE-2021-20739

CVSS v2.0

5.8

Medium

Vector

AV:A/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: WRC-300FEBK versions all WRC-F300NF versions all WRC-733FEBK versions all WRH-300RD versions all WRH-300BK versions all WRH-300SV versions all WRH-300WH versions all WRH-H300WH versions all WRH-H300BK versions all WRH-300BK-S versions all WRH-300WH-S versions all

Description: The issue allows an unauthenticated network-adjacent attacker to execute an arbitrary OS command via unspecified vectors.

Recommendations: For all versions of WRC-300FEBK, WRC-F300NF, WRC-733FEBK, WRH-300RD, WRH-300BK, WRH-300SV, WRH-300WH, WRH-H300WH, WRH-H300BK, WRH-300BK-S, and WRH-300WH-S, at the moment, there is no information about a newer version that contains a fix for this issue.

Fix

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-78

Related Identifiers

CVE-2021-20739

Affected Products

Wrc-300Febk

Wrc-733Febk

Wrc-F300Nf

Wrh-300Bk

Wrh-300Bk-S

Wrh-300Rd

Wrh-300Sv

Wrh-300Wh

Wrh-300Wh-S

PT-2021-14195 · Unknown+4 · Wrc-733Febk+8

CVE-2021-20739

Weakness Enumeration

Related Identifiers

Affected Products

References · 4