cve/CVE-2023-38378.md at b8bb3913ae5ed6689c69f4d953bda7435b2f2da7

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

The web interface on the RIGOL MSO5000 digital oscilloscope with firmware 00.01.03.00.03 allows remote attackers to execute arbitrary code via shell metacharacters in pass1 to the webcontrol changepwd.cgi application.

POC

Reference

https://news.ycombinator.com/item?id=36745664
https://tortel.li/post/insecure-scope/

Github

https://github.com/fkie-cad/nvd-json-data-feeds

741 B Raw Blame History

CVE-2023-38378

Description

POC

Reference

Github

741 B

Raw Blame History