CVE-2022-48616

Summary

A Huawei data communication product has a command injection vulnerability. Successful exploitation of this vulnerability may allow attackers to gain higher privileges.

Affected Software

VendorProductVersion RangeStatus
HuaweiAR6000AR6000 V300R019C10SPC300affected
HuaweiAR6000AR6000 V300R019C13SPC200affected
HuaweiAR6000AR6000 V300R021C00SPC200affected
HuaweiAR6000AR6000 V300R021C10SPC100affected

Weaknesses

  • CWE-78: CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

ADP Enrichment

CVE Program Container

Additional References

References