CodeB0ss

1 exploit Active since Aug 2024
CVE-2024-33896 EXPLOITDB HIGH python WORKING POC
ewon Cosy+ Firmware 21.x < 21.2s10 and 22.x < 22.1s3 - OS Command Injection via Parameter Blacklist Bypass
Cosy+ devices running a firmware 21.x below 21.2s10 or a firmware 22.x below 22.1s3 are vulnerable to code injection due to improper parameter blacklisting. This is fixed in version 21.2s10 and 22.1s3.
CVSS 7.2