CVE-2024-32292 | Tenda W30E 1.0.1.25(633) formexeCommand cmdinput command injection

Inserito da Angelo Barbosa | Apr 17, 2024 | CVE

A vulnerability was found in Tenda W30E 1.0.1.25(633). It has been declared as critical. Affected by this vulnerability is the function formexeCommand. The manipulation of the argument cmdinput leads to command injection.

This vulnerability is known as CVE-2024-32292. The attack can be launched remotely. There is no exploit available.

CVE-2024-32292 | Tenda W30E 1.0.1.25(633) formexeCommand cmdinput command injection

Post correlati

CVE-2023-41917 | Kiloview P1/P2 up to 4.8.2605 Speed-Measurement os command injection (NCSC-2024-0273)

CVE-2024-50342 | Symfony NoPrivateNetworkHttpClient information disclosure

CVE-2024-33642 | EkoJR Advanced Post List Plugin up to 0.5.6.1 on WordPress cross site scripting

CVE-2024-10431 | Codezips Pet Shop Management System 1.0 /deletebird.php t1 sql injection