GreenPacket OH736's WR-1200 Indoor Unit, OT-235 with firmware versions M-IDU-1.6.0.3_V1.1 and MH-46360-2.0.3-R5-GP respectively are vulnerable to remote command injection. Commands are executed using pre-login execution and executed with root privileges allowing complete takeover.
2023-04-04T13:15:08.750
2025-02-13T16:15:40.353
Modified
CVSSv3.1: 9.8 (CRITICAL)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | greenpacket | wr-1200_firmware | m-idu-1.6.0.3_v1.1 | Yes |
| Hardware | greenpacket | wr-1200 | - | No |
| Operating System | greenpacket | ot-235_firmware | m-idu-1.6.0.3_v1.1 | Yes |
| Operating System | greenpacket | ot-235_firmware | mh-46360-2.0.3-r5-gp | Yes |
| Hardware | greenpacket | ot-235 | - | No |