A severe remote code execution (RCE) vulnerability affects certain Calix networking devices, allowing attackers to gain complete system control without authentication. The flaw impacts legacy devices running vulnerable CWMP (CPE WAN Management Protocol) services on TCP port 6998. The critical vulnerability stems from improper input sanitization in the TR-069 protocol implementation. When connecting to TCP […]
The post Calix Pre-Auth RCE on TCP Port 6998 Allow Arbitrary Code Execution as Root User appeared first on Cyber Security News.
This article has been indexed from Cyber Security News