COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2023-29778

CVE-2023-29778

Severity
critical
Source
NVD · cve
Published
2023-05-02
CVSS
9.8
Reference
https://nvd.nist.gov/vuln/detail/CVE-2023-29778
⚡ RCE shame 50/100 rce

GL.iNET MT3000 4.1.0 Release 2 is vulnerable to OS Command Injection via /usr/lib/oui-httpd/rpc/logread.

Players implicated

gl-inet · vendorgl-mt3000 · productgl-mt3000 firmware · product

Description

GL.iNET MT3000 4.1.0 Release 2 is vulnerable to OS Command Injection via /usr/lib/oui-httpd/rpc/logread.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.