← back
CVE-2022-38841

CVE-2022-38841

CVSS 8.8 HIGHEPSS 10.7%CWE-78
Linksys AX3200 1.1.00 is vulnerable to OS command injection by authenticated users via shell metacharacters to the diagnostics traceroute page.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · n/a
public PoCs found2
cve_referencepacketstormsecurity.com/files/171433/Linksys-AX3200-1.1.00-Command-Injection.htmlunverifiedexploitdbwww.exploit-db.com/exploits/51035unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/171433/Linksys-AX3200-1.1.00-Command-Injection.htmlhttps://drive.google.com/drive/folders/1rAa4zzJPwMop0AEMiI2NKqUaZno7Ccqb?usp=sharing