← back
CVE-2021-38306

CVE-2021-38306

EPSS 9.0%
Network Attached Storage on LG N1T1*** 10124 devices allows an unauthenticated attacker to gain root access via OS command injection in the en/ajp/plugins/access.ssh/checkInstall.php destServer parameter.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.lg.com/uk/support/product/lg-N1T1DD1https://www.lg.com/us/burners-drives/lg-N1T1-network-attached-storagehttps://zerosecuritypenetrationtesting.com/?page_id=306