CVE-2023-46454 | GL.iNet GL-AR300M up to 4.3.7 Package Name os command injection

Inserito da Angelo Barbosa | Dic 12, 2023 | CVE

A vulnerability was found in GL.iNet GL-AR300M up to 4.3.7. It has been classified as critical. This affects an unknown part of the component Package Name Handler. The manipulation leads to os command injection.

This vulnerability is uniquely identified as CVE-2023-46454. The attack needs to be approached within the local network. There is no exploit available.

CVE-2023-46454 | GL.iNet GL-AR300M up to 4.3.7 Package Name os command injection

Post correlati

CVE-2024-32085 | AitThemes Citadela Listing Plugin up to 5.18.1 on WordPress cross-site request forgery

CVE-2024-27895 | Huawei HarmonyOS Window Module permission

CVE-2024-0067 | Axis Communications AB AXIS OS up to 11.10 VAPIX API ledlimit.cgi path traversal

CVE-2023-52160 | wpa_supplicant PEAP authorization