CVE-2024-51258 | DrayTek Vigor 3900 1.5.1.3 mainfunction.cgi doSSLTunnel command injection

Inserito da Angelo Barbosa | Ott 30, 2024 | CVE

A vulnerability, which was classified as critical, has been found in DrayTek Vigor 3900 1.5.1.3. This issue affects the function doSSLTunnel of the file mainfunction.cgi. The manipulation leads to command injection.

The identification of this vulnerability is CVE-2024-51258. The attack may be initiated remotely. There is no exploit available.

CVE-2024-51258 | DrayTek Vigor 3900 1.5.1.3 mainfunction.cgi doSSLTunnel command injection

Post correlati

CVE-2021-47464 | Linux Kernel up to 5.4.155/5.10.75/5.14.14 audit_filter_rules null pointer dereference

CVE-2024-45299 | alfio-event alf.io up to 2.0-M4 Content Security Policy escape output (GHSA-mcx6-25f8-8rqw)

CVE-2024-31251 | PeepSo Community Plugin up to 6.3.1.1 on WordPress cross-site request forgery

CVE-2024-1975 | ISC BIND 9 up to 9.19.24 Key Resource Record resource consumption