cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-43971,https://securityvulnerability.io/vulnerability/CVE-2022-43971,Arbitrary code execution in Linksys WUMC710,"An arbitrary code execution vulnerability is present in the Linksys WUMC710 Wireless-AC Universal Media Connector, specifically in the do_setNTP function of the httpd binary. This vulnerability arises from the use of unvalidated user input for assembling a system command. An attacker with authenticated administrator access can exploit this weakness by sending a malicious GET or POST request to /setNTP.cgi, allowing the execution of arbitrary commands on the device's underlying Linux operating system with root privileges.",Linksys,Linksys Wumc710 Wireless-ac Universal Media Connector,7.2,HIGH,0.008190000429749489,false,,false,false,false,,,false,false,,2023-01-09T00:00:00.000Z,0