CVE-2024-51246 | Draytek Vigor 3900 1.5.1.3 mainfunction.cgi doPPTP command injection

Inserito da Angelo Barbosa | Nov 4, 2024 | CVE

A vulnerability classified as critical was found in Draytek Vigor 3900 1.5.1.3. Affected by this vulnerability is the function doPPTP of the file mainfunction.cgi. The manipulation leads to command injection.

This vulnerability is known as CVE-2024-51246. The attack can be launched remotely. There is no exploit available.

CVE-2024-51246 | Draytek Vigor 3900 1.5.1.3 mainfunction.cgi doPPTP command injection

Post correlati

CVE-2024-1555 | Mozilla Firefox up to 122 firefox Protocol unknown vulnerability

CVE-2024-4732 | Campcodes Legal Case Management System 1.0 /admin/service name cross site scripting

CVE-2024-47768 | Lif-Platforms Lif-Auth-Server up to 1.7.2 improper authentication (GHSA-hmv6-8fg8-7m6f)

CVE-2024-41473 | Tenda FH1201 1.2.0.14 ip/goform/WriteFacMac mac command injection