includes/configure_client.php in RaspAP 2.6.6 allows attackers to execute commands via command injection.
{ "extracted_events": [ { "introduced": "2.6.6" }, { "last_affected": "2.6.6" } ], "cpe": "cpe:2.3:a:raspap:raspap:2.6.6:*:*:*:*:*:*:*", "source": "CPE_STRING" }
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-38556.json"