CVE-2023-4149 — A vulnerability in the web-based management allows an unauthenticated remote attacker to inject arbitrary system commands and gain full system control. Those commands are executed with root privileges — CVE Database · The Intelligence Room