CVE-2021-4242 – Sapido BR270n/BRC76n/GR297/RB1732 syscmd.htm os command injection

https://notcve.org/view.php?id=CVE-2021-4242

A vulnerability was found in Sapido BR270n, BRC76n, GR297 and RB1732 and classified as critical. Affected by this issue is some unknown functionality of the file ip/syscmd.htm. The manipulation leads to os command injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. • https://blog.csdn.net/qq_44159028/article/details/114590267 https://github.com/smallpiggy/Sapido--rce/blob/main/Sapido%E8%B7%AF%E7%94%B1%E5%99%A8-rce.py https://vuldb.com/?id.214592 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') CWE-707: Improper Neutralization •