CVE-2018-19031
HIGH360 Safe Router P0-P4 V2.0.61.58897 - Authenticated Command Injection
Title source: llmDescription
A command injection vulnerability exists when the authorized user passes crafted parameter to background process in the router. This affects 360 router series products (360 Safe Router P0,P1,P2,P3,P4), the affected version is V2.0.61.58897.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://security.360.cn/News/news/id/188.html
Scores
CVSS v3
8.8
EPSS
0.0185
EPSS Percentile
76.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-77
Status
published
Products (5)
360/safe_router_p0_firmware
2.0.61.58897
360/safe_router_p1_firmware
2.0.61.58897
360/safe_router_p2_firmware
2.0.61.58897
360/safe_router_p3_firmware
2.0.61.58897
360/safe_router_p4_firmware
2.0.61.58897
Published
Nov 04, 2019
Tracked Since
Feb 18, 2026