← back
CVE-2011-5010

CVE-2011-5010

EPSS 66.4%◆ VulnCheck KEV
Vexday Risk Score
72High priority
SSVC decision (CISA)
Act
Exploitation + impact → act immediately
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS EPSS 66.4%KEV nãoPoC públicaNuclei Metasploit simPatch
Lifecycle
08 Sep 2011Metasploit module available
30 Nov 2011Public PoC
25 Dec 2011Published on NVD
Recommendation: Patch as soon as possible — active exploitation confirmed.
apps/a3/cfg_ethping.cgi in the Ctek SkyRouter 4200 and 4300 allows remote attackers to execute arbitrary commands via shell metacharacters in the PINGADDRESS parameter for a "u" action.
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.