CVE-2021-37028
N/A
N/A
Summary
There is a command injection vulnerability in the HG8045Q product. When the command-line interface is enabled, which is disabled by default, attackers with administrator privilege could execute part of commands.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | EchoLife HG8045Q | V300R016C00,V300R018C10 | affected |
Weaknesses
- command injection
ADP Enrichment
CVE Program Container
Additional References
- https://support.huawei.com/carrier/navi?coltype=software#col=software&from=product&detailId=PBI1-252279599&path=PBI1-252301455/PBI1-252303293/PBI1-23709862/PBI1-22318696/PBI1-21457383
- http://jvn.jp/en/jp/JVN41646618/index.html
References
- https://support.huawei.com/carrier/navi?coltype=software#col=software&from=product&detailId=PBI1-252279599&path=PBI1-252301455/PBI1-252303293/PBI1-23709862/PBI1-22318696/PBI1-21457383
- http://jvn.jp/en/jp/JVN41646618/index.html
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.