System Command Injection in network.set_auth_settings in Buffalo TS5600D1206 version 3.70-0.10 allows attackers to execute system commands via the adminUsername and adminPassword parameters.
References
Link | Resource |
---|---|
https://blog.securityevaluators.com/buffalo-terastation-ts5600d1206-nas-cve-disclosure-ab5d159f036d | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2018-11-26T22:00:00
Updated: 2018-11-26T21:57:02
Reserved: 2018-07-05T00:00:00
Link: CVE-2018-13320
JSON object: View
NVD Information
Status : Analyzed
Published: 2018-11-26T23:29:00.610
Modified: 2019-10-03T00:03:26.223
Link: CVE-2018-13320
JSON object: View
Redhat Information
No data.
CWE