Command Injection Vulnerability in Delta DX-3021 Webserver

Command Injection Vulnerability in Delta DX-3021 Webserver

CVE-2022-4616 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

The webserver in Delta DX-3021 versions prior to 1.24 is vulnerable to command injection through the network diagnosis page. This vulnerability could allow a remote unauthenticated user to add files, delete files, and change file permissions.

Learn more about our Web App Pen Testing.