CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-26866

GreenPacket OH736's WR-1200 Indoor Unit, OT-235 with firmware versions M-IDU-1.6.0.3_V1.1 and MH-46360-2.0.3-R5-GP respectively are vulnerable to remote command injection. Commands are executed using pre-login execution and executed with root privileges allowing complete takeover.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.077

EPSS Ranking 91.4%

CVSS Severity

CVSS v3 Score 9.8

References

Products affected by CVE-2023-26866

Greenpacket » Ot-235 » Version: N/A

cpe:2.3:h:greenpacket:ot-235:-
Greenpacket » Wr-1200 » Version: N/A

cpe:2.3:h:greenpacket:wr-1200:-
Greenpacket » Ot-235 Firmware » Version: m-idu-1.6.0.3_v1.1

cpe:2.3:o:greenpacket:ot-235_firmware:m-idu-1.6.0.3_v1.1
Greenpacket » Ot-235 Firmware » Version: mh-46360-2.0.3-r5-gp

cpe:2.3:o:greenpacket:ot-235_firmware:mh-46360-2.0.3-r5-gp
Greenpacket » Wr-1200 Firmware » Version: m-idu-1.6.0.3_v1.1

cpe:2.3:o:greenpacket:wr-1200_firmware:m-idu-1.6.0.3_v1.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-26866

Products

Pricing

Contact Us