The Orpak SiteOmat OrCU component is vulnerable to code injection, for all versions before 2017-09-25, due to a search query that uses a direct shell command. By tampering with the request, an attacker is able to run shell commands and receive valid output from the device.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
orpak siteomat |