A command injection vulnerability in the function formImportOMCIShell of C-DATA ONU4FERW V2.1.13_X139 allows attackers to execute arbitrary commands via a crafted file.
References
Link | Resource |
---|---|
https://exploitwriter.io/2022/02/25/os-command-injection-in-c-data-onu4ferw-cve-2021-44132/ | Exploit Third Party Advisory |
https://exploitwriter.wordpress.com/2021/11/19/remote-code-execution-in-c-data-onu4ferw/ | Broken Link Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-02-25T19:38:55
Updated: 2022-02-25T19:38:55
Reserved: 2021-11-22T00:00:00
Link: CVE-2021-44132
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-02-25T20:15:08.270
Modified: 2022-03-08T20:33:18.797
Link: CVE-2021-44132
JSON object: View
Redhat Information
No data.
CWE