AVM Fritz!Box allows remote attackers to execute arbitrary commands via shell metacharacters in the var:lang parameter to cgi-bin/webcm.
References
Configurations
Information
Published : 2015-05-29 08:59
Updated : 2018-08-13 14:47
NVD link : CVE-2014-9727
Mitre link : CVE-2014-9727
JSON object : View
CWE
CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Products Affected
avm
- fritz\!box