CVE-2020-21935

A command injection vulnerability in HNAP1/GetNetworkTomographySettings of Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n allows attackers to execute arbitrary code.
References
Link Resource
https://l0n0l.xyz/post/motocx2/ Exploit Third Party Advisory
https://github.com/cc-crack/router/blob/master/motocx2.md Exploit Third Party Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:motorola:cx2_firmware:1.0.2:build_20190508:*:*:*:*:*:*
cpe:2.3:h:motorola:cx2:-:*:*:*:*:*:*:*

Information

Published : 2021-07-21 08:15

Updated : 2021-07-29 13:06


NVD link : CVE-2020-21935

Mitre link : CVE-2020-21935


JSON object : View

CWE
CWE-77

Improper Neutralization of Special Elements used in a Command ('Command Injection')

Products Affected

motorola

  • cx2
  • cx2_firmware