Vulnerability Description
A command injection vulnerability in the CLI (Command Line Interface) implementation of Hytec Inter HWL-2511-SS v1.05 and below allows attackers to execute arbitrary commands with root privileges.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hytec | Hwl-2511-Ss Firmware | <= 1.05 |
| Hytec | Hwl-2511-Ss | - |
Related Weaknesses (CWE)
References
- https://gist.github.com/Nwqda/b27418ab801eb0b9cdbe8d042cb0249bBroken Link
- https://hytec.co.jp/eng/products/our-brand/hwl-2511-ss.htmlProductVendor Advisory
- https://hytec.co.jp/eng/wordpress/wp-content/uploads/2019/09/hwl-2511-ss-ds.3.0.Vendor Advisory
- https://gist.github.com/Nwqda/b27418ab801eb0b9cdbe8d042cb0249bBroken Link
- https://hytec.co.jp/eng/products/our-brand/hwl-2511-ss.htmlProductVendor Advisory
- https://hytec.co.jp/eng/wordpress/wp-content/uploads/2019/09/hwl-2511-ss-ds.3.0.Vendor Advisory
FAQ
What is CVE-2022-36554?
CVE-2022-36554 is a vulnerability with a CVSS score of 9.8 (CRITICAL). A command injection vulnerability in the CLI (Command Line Interface) implementation of Hytec Inter HWL-2511-SS v1.05 and below allows attackers to execute arbitrary commands with root privileges.
How severe is CVE-2022-36554?
CVE-2022-36554 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2022-36554?
Check the references section above for vendor advisories and patch information. Affected products include: Hytec Hwl-2511-Ss Firmware, Hytec Hwl-2511-Ss.