Vulnerabilities > Chinamobile > AN Lianbao WF 1 Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-01-15 CVE-2021-33963 Command Injection vulnerability in Chinamobile AN Lianbao Wf-1 Firmware 1.0.1
China Mobile An Lianbao WF-1 v1.0.1 router web interface through /api/ZRMacClone/mac_addr_clone receives parameters by POST request, and the parameter macType has a command injection vulnerability.
network
low complexity
chinamobile CWE-77
critical
9.8