.. / CVE-2021-21881

Exploit for Lantronix PremierWave 2050 8.9.0.0R4 - Remote Command Injection (CVE-2021-21881)

Description:

Lantronix PremierWave 2050 8.9.0.0R4 contains an OS command injection vulnerability. A specially-crafted HTTP request can lead to command in the Web Manager Wireless Network Scanner. An attacker can make an authenticated HTTP request to trigger this vulnerability.

Nuclei Template

View the template here CVE-2021-21881.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2021/CVE-2021-21881.yaml

References:

https://github.com/ARPSyndicate/cvemon
https://talosintelligence.com/vulnerability_reports/TALOS-2021-1325
https://nvd.nist.gov/vuln/detail/CVE-2021-21881
https://github.com/ARPSyndicate/kenzer-templates

.. / CVE-2021-21881 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for Lantronix PremierWave 2050 8.9.0.0R4 - Remote Command Injection (CVE-2021-21881)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2021-21881