CVE-2021-47816

Thecus N4800Eco NAS Server Control Panel contains a command injection vulnerability that allows authenticated attackers to execute arbitrary system commands through user management endpoints. Attackers can inject commands via username and batch user creation parameters to execute shell commands with administrative privileges.

CVSS v3 8.8 HIGH

8.8^/10

CVSS v3 : HIGH

Vector :

Exploitability : 2.8 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
http://www.thecus.com/
http://www.thecus.com/product.php?PROD_ID=83
https://docs.unsafe-inline.com/0day/thecus-n4800eco-nas-server-control-panel-comand-injection
https://www.exploit-db.com/exploits/49926
https://www.vulncheck.com/advisories/thecus-neco-nas-server-control-panel-command-injection

Configurations

No configuration.

History

15 Apr 2026, 00:35

Type	Values Removed	Values Added
Summary		(es) El Panel de Control del Servidor NAS Thecus N4800Eco contiene una vulnerabilidad de inyección de comandos que permite a atacantes autenticados ejecutar comandos de sistema arbitrarios a través de puntos finales de gestión de usuarios. Los atacantes pueden inyectar comandos a través de los parámetros de nombre de usuario y creación de usuarios por lotes para ejecutar comandos de shell con privilegios administrativos.

16 Jan 2026, 19:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-01-16 19:16

Updated : 2026-04-15 00:35

NVD link : CVE-2021-47816

Mitre link : CVE-2021-47816

CVE.ORG link : CVE-2021-47816

JSON object : View

Products Affected

No product.

CWE

CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

{"id": "CVE-2021-47816", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "disclosure@vulncheck.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}], "cvssMetricV40": [{"type": "Secondary", "source": "disclosure@vulncheck.com", "cvssData": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 5.3, "Automatable": "NOT_DEFINED", "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "LOW", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "LOW", "integrityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "LOW", "availabilityRequirement": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "LOW", "confidentialityRequirement": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED"}}]}, "published": "2026-01-16T19:16:06.197", "references": [{"url": "http://www.thecus.com/", "source": "disclosure@vulncheck.com"}, {"url": "http://www.thecus.com/product.php?PROD_ID=83", "source": "disclosure@vulncheck.com"}, {"url": "https://docs.unsafe-inline.com/0day/thecus-n4800eco-nas-server-control-panel-comand-injection", "source": "disclosure@vulncheck.com"}, {"url": "https://www.exploit-db.com/exploits/49926", "source": "disclosure@vulncheck.com"}, {"url": "https://www.vulncheck.com/advisories/thecus-neco-nas-server-control-panel-command-injection", "source": "disclosure@vulncheck.com"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "disclosure@vulncheck.com", "description": [{"lang": "en", "value": "CWE-78"}]}], "descriptions": [{"lang": "en", "value": "Thecus N4800Eco NAS Server Control Panel contains a command injection vulnerability that allows authenticated attackers to execute arbitrary system commands through user management endpoints. Attackers can inject commands via username and batch user creation parameters to execute shell commands with administrative privileges."}, {"lang": "es", "value": "El Panel de Control del Servidor NAS Thecus N4800Eco contiene una vulnerabilidad de inyecci\u00f3n de comandos que permite a atacantes autenticados ejecutar comandos de sistema arbitrarios a trav\u00e9s de puntos finales de gesti\u00f3n de usuarios. Los atacantes pueden inyectar comandos a trav\u00e9s de los par\u00e1metros de nombre de usuario y creaci\u00f3n de usuarios por lotes para ejecutar comandos de shell con privilegios administrativos."}], "lastModified": "2026-04-15T00:35:42.020", "sourceIdentifier": "disclosure@vulncheck.com"}