An OS command injection vulnerability exists in the httpd logs/view.cgi functionality of FreshTomato 2022.5. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can send an HTTP request to trigger this vulnerability.
References
Link | Resource |
---|---|
https://talosintelligence.com/vulnerability_reports/TALOS-2022-1641 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: talos
Published: 2023-01-30T10:12:04.966Z
Updated:
Reserved: 2022-10-07T15:52:40.301Z
Link: CVE-2022-42484
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-01-30T11:15:09.553
Modified: 2023-02-06T21:51:02.817
Link: CVE-2022-42484
JSON object: View
Redhat Information
No data.
CWE