Command Injection Vulnerability in VCM5010 Software Versions Earlier than V100R002C50SPC100

Command Injection Vulnerability in VCM5010 Software Versions Earlier than V100R002C50SPC100

CVE-2017-2736 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

VCM5010 with software versions earlier before V100R002C50SPC100 has a command injection vulnerability. This is due to insufficient validation of user's input. An authenticated attacker could launch a command injection attack.

Learn more about our User Device Pen Test.