CVE-2024-32292 | Tenda W30E 1.0.1.25(633) formexeCommand cmdinput command injection

Inserito da Angelo Barbosa | Apr 17, 2024 | CVE

A vulnerability was found in Tenda W30E 1.0.1.25(633). It has been declared as critical. Affected by this vulnerability is the function formexeCommand. The manipulation of the argument cmdinput leads to command injection.

This vulnerability is known as CVE-2024-32292. The attack can be launched remotely. There is no exploit available.

CVE-2024-32292 | Tenda W30E 1.0.1.25(633) formexeCommand cmdinput command injection

Post correlati

CVE-2023-47701 | IBM DB2/DB2 Connect Server 10.5/11.1/11.5 Query denial of service (XFDB-266166)

CVE-2024-4939 | wpweaver Weaver Xtreme Theme Support Plugin up to 6.4 on WordPress cross site scripting

CVE-2024-21767 | Commend WS203VICM up to 1.7 Request access control (icsa-24-051-01)

CVE-2022-30265 | Emerson PAC Machine Edition code download (icsa-24-158-01)