Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to an authenticated blind OS Command Injection.CreditsT.Weber (SEC Consult Vulnerability Lab) reported this vulnerability. Coordinated by CERT@VDE.Referenceshttps://cert.vde.com/en-us/advisories/vde-2020-038
