Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in hardy-barth cph2_echarge_firmware allows OS Command Injection.This issue affects cph2_echarge_firmware: through 2.0.4.
History

Wed, 04 Dec 2024 18:00:00 +0000

Type Values Removed Values Added
First Time appeared Echarge
Echarge salia Plcc
Echarge salia Plcc Firmware
CPEs cpe:2.3:h:echarge:salia_plcc:-:*:*:*:*:*:*:*
cpe:2.3:o:echarge:salia_plcc_firmware:*:*:*:*:*:*:*:*
Vendors & Products Echarge
Echarge salia Plcc
Echarge salia Plcc Firmware

Mon, 25 Nov 2024 02:15:00 +0000

Type Values Removed Values Added
First Time appeared Hardy-barth
Hardy-barth cph2 Echarge Firmware
CPEs cpe:2.3:o:hardy-barth:cph2_echarge_firmware:*:*:*:*:*:*:*:*
Vendors & Products Hardy-barth
Hardy-barth cph2 Echarge Firmware
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Mon, 25 Nov 2024 00:30:00 +0000

Type Values Removed Values Added
References

Sun, 24 Nov 2024 23:30:00 +0000


Sun, 24 Nov 2024 22:45:00 +0000

Type Values Removed Values Added
Description Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in hardy-barth cph2_echarge_firmware allows OS Command Injection.This issue affects cph2_echarge_firmware: through 2.0.4.
Title Unauthenticated Remote Command Injection
Weaknesses CWE-77
References
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: ONEKEY

Published: 2024-11-24T22:32:43.427Z

Updated: 2024-11-25T01:30:24.409Z

Reserved: 2024-11-24T22:27:15.904Z

Link: CVE-2024-11665

cve-icon Vulnrichment

Updated: 2024-11-25T01:30:08.759Z

cve-icon NVD

Status : Analyzed

Published: 2024-11-24T23:15:03.903

Modified: 2024-12-04T17:43:55.183

Link: CVE-2024-11665

cve-icon Redhat

No data.