Insufficient input sanitization on the parameters passed to the application web gui leads to arbitrary command injection on the LPAR2RRD application server. Versions 4.53 and below and 3.5 and below are affected.
1a1002b04f4d303d72eb47b9c4e32b31388ec73b29abfea315a4fb3c871f89ea