CVE-2024-47901 | Siemens InterMesh 7177 Hybrid 2.0 Subscriber prior 8.2.12 Web Server os command injection (ssa-333468)

Inserito da Angelo Barbosa | Ott 23, 2024 | CVE

A vulnerability, which was classified as very critical, has been found in Siemens InterMesh 7177 Hybrid 2.0 Subscriber and InterMesh 7707 Fire Subscriber. Affected by this issue is some unknown functionality of the component Web Server. The manipulation leads to os command injection.

This vulnerability is handled as CVE-2024-47901. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-47901 | Siemens InterMesh 7177 Hybrid 2.0 Subscriber prior 8.2.12 Web Server os command injection (ssa-333468)

Post correlati

CVE-2024-32862 | Johnson Controls exacqVision Web Service 22.12.1.0 cross-domain policy (icsa-24-214-02)

CVE-2024-34161 | F5 NGINX Plus/NGINX Open Source HTTP3 QUIC memory leak (K000139627)

CVE-2024-42351 | galaxyproject Galaxy up to 21.04 information disclosure (GHSA-5639-cmph-9j4v)

CVE-2024-38877 | Siemens Omnivise T3000 Application Server cleartext storage (ssa-857368)