CVE-2024-11046 | D-Link DI-8003 16.07.16A1 /upgrade_filter.asp upgrade_filter_asp path os command injection

Inserito da Angelo Barbosa | Nov 9, 2024 | CVE

A vulnerability was found in D-Link DI-8003 16.07.16A1. It has been classified as critical. Affected is the function upgrade_filter_asp of the file /upgrade_filter.asp. The manipulation of the argument path leads to os command injection.

This vulnerability is traded as CVE-2024-11046. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-11046 | D-Link DI-8003 16.07.16A1 /upgrade_filter.asp upgrade_filter_asp path os command injection

Post correlati

CVE-2024-40415 | Tenda AX1806 1.0.0.1 SetStaticRouteCfg sub_519F4 stack-based overflow

CVE-2024-35879 | Linux Kernel up to 6.8.4 of_changeset_destroy memory leak

CVE-2023-5527 | Business Directory Plugin up to 6.4.3 on WordPress csv injection

CVE-2023-5592 | Phoenix Contact MULTIPROG/ProConOS eCLR code download (VDE-2023-054)