Command Injection Vulnerability in Intelbras WiFiber 120AC
CVE-2022-40005
8.8HIGH
What is CVE-2022-40005?
The Intelbras WiFiber 120AC inMesh device is vulnerable to command injection attacks that can be exploited by authenticated users. This vulnerability allows attackers to execute arbitrary commands via specific HTTP URIs, such as /boaform/formPing6 and /boaform/formTracert, compromising the integrity of the system. Users must ensure their devices are updated to mitigate potential risks associated with this flaw.