The popular rConfig network configuration management utility is affected by two critical remote code execution flaws that have yet to be patched. The cyber security expert Mohammad Askar has published proof-of-concept exploits for both vulnerabilities. One of the exploits could be exploited by a remote, unauthenticated attacker to compromise targeted servers, and connected network devices. Currently, rConfig is being used to manage more than 3.3 million network devices, unfortunately the two RCE flaws affect all versions of the popular software.”]
Source: https://securityaffairs.co/wordpress/93391/hacking/rconfig-rce-flaws.html