Arris TR3300 v1.0.13 exists to contain a command injection vulnerability in the time and time zone function via the h_primary_ntp_server, h_backup_ntp_server, and h_time_zone parameters. This vulnerability allows malicious users to execute arbitrary commands via a crafted request.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
commscope arris_tr3300_firmware 1.0.13 |