GOCLOUD S3A K2P MTK Firmware 4.2.7.16528
Approved changes feed: RSS · Atom
cpe:2.3:o:gocloud:s3a_k2p_mtk_firmware:4.2.7.16528:*:*:*:*:*:*:*
part: o version: 4.2.7.16528 update: *
| Vendor | Gocloud (6cd0ab2a-9593-5918-8f65-5bd5cdb084ef) |
|---|---|
| Product | S3A K2P Mtk Firmware (0b4ccb61-2c13-5b01-9276-0b2909e7d7d9) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2020-8949 |
vulnerable | 2026-06-08 05:27:20.022098 |
Details available
Gocloud S2A_WL 4.2.7.16471, S2A 4.2.7.17278, S2A 4.3.0.15815, S2A 4.3.0.17193, S3A K2P MTK 4.2.7.16528, S3A 4.3.0.16572, and ISP3000 4.3.0.17190 devices allows remote attackers to execute arbitrary OS commands via shell metacharacters in a ping operation, as demonstrated by the cgi-bin/webui/admin/tools/app_ping/diag_ping/; substring.
Published: 2020-02-12T18:21:16.000Z
Updated: 2024-08-04T10:12:11.054Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.