Command Injection Vulnerability in B2368 Series Routers

Command Injection Vulnerability in B2368 Series Routers

CVE-2020-9199 · MEDIUM Severity

CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

B2368-22 V100R001C00;B2368-57 V100R001C00;B2368-66 V100R001C00 have a command injection vulnerability. An attacker with high privileges may exploit this vulnerability through some operations on the LAN. Due to insufficient input validation of some parameters, the attacker can exploit this vulnerability to inject commands to the target device.

Learn more about our Web Application Penetration Testing UK.