Required CVE Record Information
Description
Command injection vulnerability in RaspAP raspap-webgui 2.8.8 and earlier allows remote attackers to run arbitrary commands via crafted POST request to hostapd settings form.
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 2 Total
- https://eldstal.se/advisories/230328-raspap.html x_transferred
- https://github.com/RaspAP/raspap-webgui/pull/1322 x_transferred