CVE-2023-23295

Published: 2023-02-23T23:15Z

Last Modified: 2025-03-17T19:15Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Korenix Jetwave 4200 Series 1.3.0 and JetWave 3000 Series 1.6.0 are vulnerable to Command Injection via /goform/formSysCmd. An attacker an modify the sysCmd parameter in order to execute commands as root. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt