Vulnerability Details : CVE-2023-30260
Command injection vulnerability in RaspAP raspap-webgui 2.8.8 and earlier allows remote attackers to run arbitrary commands via crafted POST request to hostapd settings form.
Exploit prediction scoring system (EPSS) score for CVE-2023-30260
Probability of exploitation activity in the next 30 days: 0.09%
CVSS scores for CVE-2023-30260
|Base Score||Base Severity||CVSS Vector||Exploitability Score||Impact Score||Source|
CWE ids for CVE-2023-30260
The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.Assigned by: firstname.lastname@example.org (Primary)