CVE-2023-27826
Published Apr 12, 2023
Last updated 2 years ago
Overview
- Description
- SeowonIntech SWC 5100W WIMAX Bootloader 1.18.19.0, HW 0.0.7.0, and FW 1.11.0.1, 1.9.9.4 are vulnerable to OS Command Injection. which allows attackers to take over the system with root privilege by abusing doSystem() function.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 8.8
- Impact score
- 5.9
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
Weaknesses
- nvd@nist.gov
- CWE-78
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:seowonintech:swc-5100w_firmware:1.9.9.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A87515A7-7BC2-40C9-ABC7-AFBD140D78AA"
},
{
"criteria": "cpe:2.3:o:seowonintech:swc-5100w_firmware:1.11.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2E2D3D17-8900-4C3E-9A22-AD0E1564A4B4"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:seowonintech:swc-5100w:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "07996E93-A808-4A07-8C3D-5734B3D971ED"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]