CVE-2017-12573 (cs-w50hd_firmware)
-
An issue was discovered on PLANEX CS-W50HD devices with firmware before 030720. The device has a command-injection vulnerability in the web management UI on NAS settings page "/cgi-bin/nasset.cgi". An attacker can send a crafted HTTP POST request to execute arbitrary code. Authentication is required before executing the attack.
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-12573
© Lightnetics 2024