CVE-2024-51246 | Draytek Vigor 3900 1.5.1.3 mainfunction.cgi doPPTP command injection

Inserito da Angelo Barbosa | Nov 4, 2024 | CVE

A vulnerability classified as critical was found in Draytek Vigor 3900 1.5.1.3. Affected by this vulnerability is the function doPPTP of the file mainfunction.cgi. The manipulation leads to command injection.

This vulnerability is known as CVE-2024-51246. The attack can be launched remotely. There is no exploit available.

CVE-2024-51246 | Draytek Vigor 3900 1.5.1.3 mainfunction.cgi doPPTP command injection

Post correlati

CVE-2024-11493 | 115cms up to 20240807 pageAE.html tid cross site scripting

CVE-2024-6702 | Pegasystems Pega Infinity up to 24.1.2 Stage cross site scripting

CVE-2024-6526 | CodeIgniter Ecommerce-CodeIgniter-Bootstrap up to 1998845073cf433bc6c250b0354461fbd84d0e03 search_title/catName/sub/name/categorie cross site scripting

CVE-2024-31714 | Waxlab wax up to 0.9-3 Lua Library buffer overflow