CVE-2017-14127

Published: 2017-09-04T20:29Z

Last Modified: 2024-11-21T03:12Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Command Injection in the Ping Module in the Web Interface on Technicolor TD5336 OI_Fw_v7 devices allows remote attackers to execute arbitrary OS commands as root via shell metacharacters in the pingAddr parameter to mnt_ping.cgi. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt