VYPR
Critical severity9.8NVD Advisory· Published Mar 9, 2020· Updated Jun 17, 2026

CVE-2020-10250

CVE-2020-10250

Description

BWA DiREX-Pro 1.2181 devices allow remote attackers to execute arbitrary OS commands via shell metacharacters in the PKG parameter to uninstall.php3.

Affected products

2
  • BWA/DiREX-Prodescription
  • BWA/DiREX-Prollm-fuzzy
    Range: = 1.2181

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.