Vulnerabilidades en 360 Security Technology, Inc.
2 resultadosCVE-2018-19031—A command injection vulnerability exists when the authorized user passes crafted parameter to background process in the router. This affectsEPSS 1.8%CVE-2019-3404—By adding some special fields to the uri ofrouter app function, the user could abuse background app cgi functions withoutauthentication. ThiEPSS 0.9%