CVE-2024-34338 | Tenda O3V2 up to 1.0.0.12 /goform/getTraceroute dest command injection

Inserito da Angelo Barbosa | Mag 9, 2024 | CVE

A vulnerability classified as critical has been found in Tenda O3V2 up to 1.0.0.12. Affected is an unknown function of the file /goform/getTraceroute. The manipulation of the argument dest leads to command injection.

This vulnerability is traded as CVE-2024-34338. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-34338 | Tenda O3V2 up to 1.0.0.12 /goform/getTraceroute dest command injection

Post correlati

CVE-2024-10660 | ESAFENET CDG 5 HookService.java deleteHook hookId sql injection

CVE-2024-21313 | Microsoft information disclosure

CVE-2024-26940 | Linux Kernel up to 6.1.83/6.6.23/6.7.11/6.8.2/6.9-rc1 vmwgfx ttm_resource_manager allocation of resources

CVE-2024-38087 | Microsoft unknown vulnerability