CVE-2022-45717 Information

Description

IP-COM M50 V15.11.0.33(10768) was discovered to contain a command injection vulnerability via the usbPartitionName parameter in the formSetUSBPartitionUmount function. This vulnerability is exploited via a crafted GET request.

Reference

https://hackmd.io/@AAN506JzR6urM5U8fNh1ng/By3Y6DRrj