360 router series products version V126.96.36.199897 Improper Neutralization of Special Elements in Output Used by a Downstream Component (‘Injection’) Vulnerability
A command injection vulnerability exists when the authorized user passes a crafted parameter to the background process in the router.
The information has been provided by Vendor
The original article can be found at:https://security.360.cn/News/news/id/188.html
This affects 360 router series products (360 Safe Router P0,P1,P2,P3,P4), the affected version is V188.8.131.52897.
360 router series products version V184.108.40.206897
Published Date: 11/04/2019