C-data Onu4ferw Project ≫ C-data Onu4ferw Firmware

A command injection vulnerability in the function formImportOMCIShell of C-DATA ONU4FERW V2.1.13_X139 allows attackers to execute arbitrary commands via a crafted file.