The Ericsson-LG iPECS NMS A.1Ac login portal is prone to multiple SQL injection vulnerabilities in the "id" and "passwd" parameters which allow unauthenticated attackers to bypass the login page and execute remote code on the operating system.
The vendor has been notified about the vulnerability, however a distributor firm has responded. No response was received from the company after the disclosure. The product is a paid product therefore is not available for download.
Vendor of Product
Affected Product Code Base
iPECS NMS - A.1Ac
Impact Code execution
In order to exploit the vulnerability an attacker needs to send a post request with the affected parameters containing SQL injection payloads. The attacker does not need to be authenticated.
Berk Cem Goksel