LifeSize Team, Room, Passport, and Networker 220 devices allow Authenticated Remote OS Command Injection, as demonstrated by shell metacharacters in the support/mtusize.php mtu_size parameter. The lifesize default password for the cli account may sometimes be used for authentication.
References
Link | Resource |
---|---|
https://www.trustwave.com/en-us/resources/security-resources/security-advisories/?fid=22113 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:19:30
Updated: 2022-10-03T16:19:30
Reserved: 2022-10-03T00:00:00
Link: CVE-2019-7632
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-02-08T05:29:01.197
Modified: 2019-02-08T19:30:47.563
Link: CVE-2019-7632
JSON object: View
Redhat Information
No data.
CWE