← back
CVE-2024-5403

ASKEY 5G NR Small Cell - Command Injection

CVSS 7.2 HIGHEPSS 0.6%CWE-78
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 7.2EPSS 0.6%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
27 May 2024Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
ASKEY 5G NR Small Cell fails to properly filter user input for certain functionality, allowing remote attackers with administrator privilege to execute arbitrary system commands on the remote server.
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected products
ASKEY · 5G NR Small Cell