CVE-2022-38094

Summary

OS command injection vulnerability in the telnet function of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote authenticated attacker to execute an arbitrary OS command.

Affected Software

VendorProductVersion RangeStatus
Allied Telesis K.K.CentreCOM AR260S V2firmware versions prior to Ver.3.3.7affected

Weaknesses

  • OS Command Injection

ADP Enrichment

CVE Program Container

Additional References

References