CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0CVE-2022-32665
https://notcve.org/view.php?id=CVE-2022-32665
In Boa, there is a possible command injection due to improper input validation. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: A20220026; Issue ID: OSBNB00144124. En Boa, existe una posible inyección de comando debido a una validación de entrada incorrecta. • https://corp.mediatek.com/product-security-bulletin/January-2023 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 8.8EPSS: 0%CPEs: 12EXPL: 0CVE-2022-32664
https://notcve.org/view.php?id=CVE-2022-32664
In Config Manager, there is a possible command injection due to improper input validation. This could lead to remote escalation of privilege with User execution privileges needed. User interaction is needed for exploitation. Patch ID: A20220004; Issue ID: OSBNB00140929. En Config Manager, existe una posible inyección de comando debido a una validación de entrada incorrecta. • https://corp.mediatek.com/product-security-bulletin/January-2023 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •