CVE-2016-10098

An issue was discovered on SendQuick Entera and Avera devices before 2HF16. Multiple Command Injection vulnerabilities allow attackers to execute arbitrary system commands.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:sendquick:entera_sms_gateway_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sendquick:entera_sms_gateway:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:sendquick:avera_sms_gateway_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sendquick:avera_sms_gateway:-:*:*:*:*:*:*:*

History

14 Feb 2024, 01:17

Type Values Removed Values Added
References (MISC) https://niantech.io/blog/2017/02/05/vulns-multiple-vulns-in-sendquick-entera-avera-sms-gateway-appliances/ - Press/Media Coverage, Third Party Advisory (MISC) https://niantech.io/blog/2017/02/05/vulns-multiple-vulns-in-sendquick-entera-avera-sms-gateway-appliances/ - Press/Media Coverage, Third Party Advisory, URL Repurposed

Information

Published : 2017-02-05 18:59

Updated : 2024-02-28 15:44


NVD link : CVE-2016-10098

Mitre link : CVE-2016-10098

CVE.ORG link : CVE-2016-10098


JSON object : View

Products Affected

sendquick

  • entera_sms_gateway
  • avera_sms_gateway
  • entera_sms_gateway_firmware
  • avera_sms_gateway_firmware
CWE
CWE-77

Improper Neutralization of Special Elements used in a Command ('Command Injection')