Hongdian H8922 3.0.5 devices allow OS command injection via shell metacharacters into the ip-address (aka Destination) field to the tools.cgi ping command, which is accessible with the username guest and password guest.
https://blog.xlab.qianxin.com/catddos-derivative-en/
https://ssd-disclosure.com/ssd-advisory-hongdian-h8922-multiple-vulnerabilities/