Exploit for #VU18825 OS Command Injection in DT-300N

Exploit for #VU18825 OS Command Injection in DT-300N

Published: 2020-03-18

Vulnerability identifier: #VU18825

Vulnerability risk: Low

CVSSv3.1: 6.4 [CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:U/RC:C]

CVE-ID: CVE-2018-18852

CWE-ID: CWE-78

Exploitation vector: Local network

Exploits in database: 1

March 18, 2020
- CVE-2018-18852 (CERIO RCE CVE-2018-18852, authenticated (vendor defaults) web-based RCE as root user.) [Github]

Impact: Code execution

Vulnerable software:
DT-300N
Hardware solutions / Routers for home users

Vendor: Cerio