CVE-2022-38531
HIGHFPT G-97RG6M and G-97RG3 - Remote Command Execution via Ping Function
Title source: manualDescription
FPT G-97RG6M R4.2.98.035 and G-97RG3 R4.2.43.078 are vulnerable to Remote Command Execution in the ping function.
References (1)
Core 1
Core References
Exploit, Third Party Advisory x_refsource_misc
https://github.com/SLoSnow9879/FPT-Router-RCE
Scores
CVSS v3
8.8
EPSS
0.0181
EPSS Percentile
75.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-78
Status
published
Products (2)
fpt/g-97rg3_firmware
r4.2.43.078
fpt/g-97rg6m_firmware
r4.2.98.035
Published
Sep 08, 2022
Tracked Since
Feb 18, 2026