CVE-2024-44466 | Comfast CF-XR11 2.7.2 HTTP POST Request /usr/bin/webmgnt sub_424CB4 iface command injection

Inserito da Angelo Barbosa | Set 11, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Comfast CF-XR11 2.7.2. This issue affects the function sub_424CB4 of the file /usr/bin/webmgnt of the component HTTP POST Request Handler. The manipulation of the argument iface leads to command injection.

The identification of this vulnerability is CVE-2024-44466. The attack may be initiated remotely. There is no exploit available.

CVE-2024-44466 | Comfast CF-XR11 2.7.2 HTTP POST Request /usr/bin/webmgnt sub_424CB4 iface command injection

Post correlati

CVE-2024-23773 | Quest KACE Agent 12.0.38/13.1.23.0 on Windows KSchedulerSvc.exe denial of service

CVE-2024-3596 | RADIUS Protocol RFC 2865 Response weak hash

CVE-2024-31036 | NanoMQ 0.21.7 Hexstreams read_byte heap-based overflow (Issue 1722)

CVE-2024-37674 | Moodle 3.10 New Activity Field Name cross site scripting