Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Through the File upload feature, it is possible to replace .sh files in the device with malicious content, leading to execute os commands on the device as root user.
The vulnerability is described in the below URL: https://github.com/feric/Findings/tree/main/Hiby/Web%20Server/File%20uploading
This finding was found in firmware 1.5; however, is still present in the latest 1.7 firmware for the R3 Pro Saber.
The text was updated successfully, but these errors were encountered:
🤦
Sorry, something went wrong.
Are you able to start sshd?
No branches or pull requests
Through the File upload feature, it is possible to replace .sh files in the device with malicious content, leading to execute os commands on the device as root user.
The vulnerability is described in the below URL:
https://github.com/feric/Findings/tree/main/Hiby/Web%20Server/File%20uploading
This finding was found in firmware 1.5; however, is still present in the latest 1.7 firmware for the R3 Pro Saber.
The text was updated successfully, but these errors were encountered: