Certain Korenix JetWave devices allow authenticated users to execute arbitrary code as root via /syscmd.asp. This affects 2212X prior to 1.9.1, 2212S prior to 1.9.1, 2212G prior to 1.8, 3220 V3 prior to 1.5.1, 3420 V3 prior to 1.5.1, and 2311 through 2022-01-31.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
korenix jetwave 2212s firmware |
||
korenix jetwave 2212g firmware |
||
korenix jetwave 2311 firmware |
||
korenix jetwave 3220 firmware |
||
korenix jetwave 3420 firmware |
||
korenix jetwave 2212x firmware |