CVE-2021-42538

Severity CVSS v4.0:
Pending analysis
Type:
CWE-77 Command Injection
Publication date:
22/10/2021
Last modified:
25/07/2022

Description

The affected product is vulnerable to a parameter injection via passphrase, which enables the attacker to supply uncontrolled input.

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:emerson:wireless_1410_gateway_firmware:*:*:*:*:*:*:*:* 4.7.94 (excluding)
cpe:2.3:h:emerson:wireless_1410_gateway:*:*:*:*:*:*:*:*
cpe:2.3:o:emerson:wireless_1410d_gateway_firmware:*:*:*:*:*:*:*:* 4.7.94 (excluding)
cpe:2.3:h:emerson:wireless_1410d_gateway:*:*:*:*:*:*:*:*
cpe:2.3:o:emerson:wireless_1420_gateway_firmware:*:*:*:*:*:*:*:* 4.7.94 (excluding)
cpe:2.3:h:emerson:wireless_1420_gateway:-:*:*:*:*:*:*:*


References to Advisories, Solutions, and Tools