Argument Injection Vulnerability in VR-S1000 Firmware Ver. 2.37 and Earlier

Argument Injection Vulnerability in VR-S1000 Firmware Ver. 2.37 and Earlier

CVE-2023-46681 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Improper neutralization of argument delimiters in a command ('Argument Injection') vulnerability in VR-S1000 firmware Ver. 2.37 and earlier allows an authenticated attacker who can access to the product's command line interface to execute an arbitrary command.

Learn more about our Web Application Penetration Testing UK.