CVE-2023-44221

Beschreibung

Improper neutralization of special elements in the SMA100 SSL-VPN management interface allows a remote authenticated attacker with administrative privilege to inject arbitrary commands as a 'nobody' user, potentially leading to OS Command Injection Vulnerability.

Schweregrad: HIGH

CVSS-Score: 7.2