Lucene search
China National Vulnerability DatabaseCNVD-2022-68525HistoryMar 17, 2022 - 12:00 a.m.
ARRIS TR3300 Command Injection Vulnerability (CNVD-2022-68525)
2022-03-1700:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
arris u.s.a
wi-fi router
command injection
vulnerability
upnp parameter
exploit
EPSS
0.004
Percentile
73.8%
ARRIS TR3300 is an 802.11ac Wi-Fi router from ARRIS U.S.A. A command injection vulnerability exists in ARRIS TR3300, which stems from the upnp_ttl parameter in the upnp function failing to properly filter the construct command special characters, commands, etc. An attacker could exploit this vulnerability to cause arbitrary command execution.
Related
cve
cve
CVE-2022-26997
2022-03-15 22:15:15
nvd
nvd
CVE-2022-26997
2022-03-15 22:15:15
cvelist
cvelist
CVE-2022-26997
2022-03-15 21:56:29
prion
prion
Command injection
2022-03-15 22:15:00
checkpoint_advisories
checkpoint_advisories