inim smartliving_505_firmware os命令中使用的特殊元素转义处理不恰当（os命令注入）

admin

0
文章

0
评论

2023-12-01 14:56:07 Ali_nvd 来源：ZONE.CI 全球网 0 阅读模式

inim smartliving_505_firmware os命令中使用的特殊元素转义处理不恰当（os命令注入）

CVE编号

CVE-2020-21992

利用情况

暂无

补丁情况

N/A

披露时间

2021-04-29

漏洞描述

Inim Electronics SmartLiving SmartLAN/G/SI <=6.x suffers from an authenticated remote command injection vulnerability. The issue exist due to the 'par' POST parameter not being sanitized when called with the 'testemail' module through web.cgi binary. The vulnerable CGI binary (ELF 32-bit LSB executable, ARM) is calling the 'sh' executable via the system() function to issue a command using the mailx service and its vulnerable string format parameter allowing for OS command injection with root privileges. An attacker can remotely execute system commands as the root user using default credentials and bypass access controls in place.

解决建议

建议您更新当前系统或软件至最新版，完成漏洞的修复。

参考链接
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2019-5544.php

受影响软件情况

1
#	类型	厂商	产品	版本	影响面
	运行在以下环境
	系统	inim	smartliving_10100lg3_firmware	*		Up to (including) 6.0:
	运行在以下环境
	系统	inim	smartliving_10100l_firmware	*		Up to (including) 6.0:
	运行在以下环境
	系统	inim	smartliving_1050g3_firmware	*		Up to (including) 6.0:
	运行在以下环境
	系统	inim	smartliving_1050_firmware	*		Up to (including) 6.0:
	运行在以下环境
	系统	inim	smartliving_505_firmware	*		Up to (including) 6.0:
	运行在以下环境
	系统	inim	smartliving_515_firmware	*		Up to (including) 6.0:
	运行在以下环境
	硬件	inim	smartliving_10100l	-	-
	运行在以下环境
	硬件	inim	smartliving_10100lg3	-	-
	运行在以下环境
	硬件	inim	smartliving_1050	-	-
	运行在以下环境
	硬件	inim	smartliving_1050g3	-	-
	运行在以下环境
	硬件	inim	smartliving_505	-	-
	运行在以下环境
	硬件	inim	smartliving_515	-	-