Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2022-01-15	CVE-2021-33963	Command Injection vulnerability in Chinamobile AN Lianbao Wf-1 Firmware 1.0.1 China Mobile An Lianbao WF-1 v1.0.1 router web interface through /api/ZRMacClone/mac_addr_clone receives parameters by POST request, and the parameter macType has a command injection vulnerability. network low complexity chinamobile CWE-77 critical	9.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.