CVE-2024-2415 | Movistar Router 4G ES_WLD71-T1_v2.0.201820 POST Request /cgi-bin/gui.cgi os command injection

Inserito da Angelo Barbosa | Mar 13, 2024 | CVE

A vulnerability was found in Movistar Router 4G ES_WLD71-T1_v2.0.201820 and classified as critical. This issue affects some unknown processing of the file /cgi-bin/gui.cgi of the component POST Request Handler. The manipulation leads to os command injection.

The identification of this vulnerability is CVE-2024-2415. Attacking locally is a requirement. There is no exploit available.

CVE-2024-2415 | Movistar Router 4G ES_WLD71-T1_v2.0.201820 POST Request /cgi-bin/gui.cgi os command injection

Post correlati

CVE-2023-45892 | Floorsight Insights Q3 2023 Order/Invoice Pages information disclosure

CVE-2024-44944 | Linux Kernel up to 6.10.2 ctnetlink nf_expect_get_id Privilege Escalation

CVE-2024-48510 | haf DotNetZip.Semverd up to 1.16.0 ZipEntry.Extract.cs path traversal

CVE-2024-5764 | Sonatype Nexus Repository up to 3.72.0 hard-coded credentials