CVE-2022-30309
Discription
In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint “cecc-x-web-viewer-request-off” POST request doesnât check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection.Read More
References
Back to Main