RCE in Sapido Br270n
CVE-2021-4242
A vulnerability was found in Sapido BR270n, BRC76n, GR297 and RB1732 and classified as critical. Affected by this issue is some unknown functionality of the file ip/syscmd.htm. The manipulation leads to os command injection. The attack may…
EPSS: 0.030 (85.8th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 6.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L.
Affected products
- Sapido Br270n — versions n/a
- Sapido Br270n_firmware — versions 2.1.03
- Sapido Brc76n — versions n/a
- Sapido Brc76n_firmware — versions 2.1.03
- Sapido Gr297 — versions n/a
- Sapido Gr297n
- Sapido Gr297n_firmware — versions 2.1.3
- Sapido Rb-1732
- Sapido Rb1732 — versions n/a
- Sapido Rb-1732_firmware — versions 2.0.43
Weakness classification (CWE)
References
- cna@vuldb.com (Exploit, Third Party Advisory)
- cna@vuldb.com (Exploit, Third Party Advisory)
- cna@vuldb.com (Third Party Advisory)
Frequently asked questions
- What is CVE-2021-4242?
- CVE-2021-4242 is a medium-severity vulnerability in Sapido Br270n, classified under CWE-707. CVSS score: 6.3/10. Published 2022-11-30.
- How severe is CVE-2021-4242?
- Medium severity. CVSS v3 base score is 6.3 out of 10.