CVE-2021-33534

Name of the Vulnerable Software and Affected Versions Weidmueller Industrial WLAN devices (affected versions not specified)

Description A command injection issue exists in the hostname functionality of the affected devices. This allows an attacker to execute arbitrary system commands by making a specially crafted entry to network configuration information, potentially leading to full control of the device. The vulnerability can be triggered by sending various requests while authenticated as a high-privilege user.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.