An authentication-bypass issue in the component http:/...
Critical severity
Unreviewed
Published
Aug 11, 2022
to the GitHub Advisory Database
•
Updated Feb 2, 2023
Description
Published by the National Vulnerability Database
Aug 10, 2022
Published to the GitHub Advisory Database
Aug 11, 2022
Last updated
Feb 2, 2023
An authentication-bypass issue in the component http://MYDEVICEIP/cgi-bin-sdb/ExportSettings.sh of Mega System Technologies Inc MSNSwitch MNT.2408 allows unauthenticated attackers to arbitrarily configure settings within the application, leading to remote code execution.
References