CVE-2024-20418 | Cisco IOS XE Controller Web-based Management Interface command injection (cisco-sa-backhaul-ap-cmdinj-R7E28Ecs)

Inserito da Angelo Barbosa | Nov 6, 2024 | CVE

A vulnerability, which was classified as very critical, has been found in Cisco IOS XE Controller. This issue affects some unknown processing of the component Web-based Management Interface. The manipulation leads to command injection.

The identification of this vulnerability is CVE-2024-20418. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-20418 | Cisco IOS XE Controller Web-based Management Interface command injection (cisco-sa-backhaul-ap-cmdinj-R7E28Ecs)

Post correlati

CVE-2024-38817 | VMware NSX/Cloud Foundation NSX Edge CLI Terminal command injection

CVE-2024-28132 | F5 BIG-IP Next CNF 1.2.0/1.2.1 Global Server Load Balancing Container information disclosure (K000138913)

CVE-2024-32430 | ActiveCampaign Plugin up to 8.1.14 on WordPress server-side request forgery

CVE-2024-1954 | Oliver POS Plugin up to 2.4.1.8 on WordPress cross-site request forgery