CVE-2024-28027 | MC Technologies MC LR Router 2.10.5 HTTP Request timer1 os command injection (TALOS-2024-1953)

Inserito da Angelo Barbosa | Nov 21, 2024 | CVE

A vulnerability was found in MC Technologies MC LR Router 2.10.5. It has been rated as critical. Affected by this issue is some unknown functionality of the component HTTP Request Handler. The manipulation of the argument timer1 leads to os command injection.

This vulnerability is handled as CVE-2024-28027. The attack may be launched remotely. There is no exploit available.

CVE-2024-28027 | MC Technologies MC LR Router 2.10.5 HTTP Request timer1 os command injection (TALOS-2024-1953)

Post correlati

CVE-2024-1123 | EventPrime Plugin up to 3.4.2 on WordPress authorization

CVE-2024-10459 | Mozilla Thunderbird up to 131 use after free

CVE-2024-6593 | WatchGuard Authentication Gateway up to 12.10.2 on Windows Management Command authorization (wgsa-2024-00015)

CVE-2024-8631 | GitLab Enterprise Edition up to 17.1.6/17.2.4/17.3.1 Group Member privilege defined with unsafe actions (Issue 462665)