Primary

Context

WePresent WiPG-1000 Command Injection Vulnerability

Vulnerability

A command injection vulnerability has been identified in WePresent WiPG-1000 devices running firmware prior to 2.2.3.0. This vulnerability allows unauthenticated remote attackers to execute arbitrary commands with root privileges on the device. The issue arises from improper input validation in the undocumented '/cgi-bin/rdfs.cgi' endpoint, where the 'Client' parameter is not sanitized before being passed to a system call.

Impact

Exploitation of this vulnerability allows for arbitrary command execution on the affected device with root privileges.

Reproduction

To reproduce this vulnerability, send a POST request to the '/cgi-bin/rdfs.cgi' endpoint with a crafted 'Client' parameter that includes the desired command, such as '; reboot;' to demonstrate command execution. The 'Download' parameter must also be included.

Remediation

Users are advised to update to WePresent WiPG-1000 firmware version 2.2.3.0 or later.

Added: Sep 1, 2025, 7:22 PM

Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

8.7

remediation

7.7

relevance

0.3

threat

7.8

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

8.7

remediation

7.7

relevance

0.3

threat

7.8

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

WePresent WiPG-1000 Command Injection Vulnerability

Vulnerability

Impact

Reproduction

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating