CVE-2021-38556

CVE-2021-38556

EPSS 13.0%

includes/configure_client.php in RaspAP 2.6.6 allows attackers to execute commands via command injection.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/RaspAP/raspap-webgui https://github.com/RaspAP/raspap-webgui/blob/0e1d652c5e55f812aaf2a5908884e9db179416ee/includes/configure_client.php https://zerosecuritypenetrationtesting.com/?page_id=306