Remote Command Execution in iBall iB-WRA150N 1.2.6 build 110401 Rel.47776n Devices via Ping Test Arguments

Remote Command Execution in iBall iB-WRA150N 1.2.6 build 110401 Rel.47776n Devices via Ping Test Arguments

CVE-2018-6388 · HIGH Severity

AV:N/AC:L/AU:S/C:C/I:C/A:C

iBall iB-WRA150N 1.2.6 build 110401 Rel.47776n devices allow remote authenticated users to execute arbitrary OS commands via shell metacharacters in the ping test arguments on the Diagnostics page.

Learn more about our User Device Pen Test.