Summary
Detail | |||
---|---|---|---|
Vendor | Intenogroup | First view | 2018-01-04 |
Product | Iopsys | Last view | 2018-01-04 |
Version | Type | Hardware | |
Update | |||
Edition | |||
Language | |||
Sofware Edition | |||
Target Software | |||
Target Hardware | |||
Other |
Activity : Overall
COMMON PLATFORM ENUMERATION: Repartition per Version
CPE Name | Affected CVE |
---|---|
cpe:2.3:h:intenogroup:iopsys:4.0:*:*:*:*:*:*:* | 1 |
Related : CVE
Date | Alert | Description | |
---|---|---|---|
8.8 | 2018-01-04 | CVE-2017-17867 | Inteno iopsys 2.0-3.14 and 4.0 devices allow remote authenticated users to execute arbitrary OS commands by modifying the leasetrigger field in the odhcpd configuration to specify an arbitrary program, as demonstrated by a program located on an SMB share. This issue existed because the /etc/uci-defaults directory was not being used to secure the OpenWrt configuration. |
CWE : Common Weakness Enumeration
% | id | Name |
---|---|---|
100% (1) | CWE-732 | Incorrect Permission Assignment for Critical Resource |