CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
Percentile
27.8%
Adtran 834-5 11.1.0.101-202106231430, and fixed as of SmartOS Version 12.6.3.1, devices allow OS Command Injection via shell metacharacters to the Ping or Traceroute utility.
Vendor | Product | Version | CPE |
---|---|---|---|
adtran | sdg_smartos | * | cpe:2.3:o:adtran:sdg_smartos:*:*:*:*:*:*:*:* |
adtran | 834-5_firmware | 11.1.0.101-202106231430 | cpe:2.3:o:adtran:834-5_firmware:11.1.0.101-202106231430:*:*:*:*:*:*:* |
adtran | 834-5 | - | cpe:2.3:h:adtran:834-5:-:*:*:*:*:*:*:* |