CVE-2024-36061 | EnGenius EWS356-FIT up to 1.1.30 Ping/Speed Test os command injection

Inserito da Angelo Barbosa | Nov 11, 2024 | CVE

A vulnerability was found in EnGenius EWS356-FIT up to 1.1.30 and classified as critical. This issue affects some unknown processing of the component Ping/Speed Test. The manipulation leads to os command injection.

The identification of this vulnerability is CVE-2024-36061. The attack can only be initiated within the local network. There is no exploit available.

CVE-2024-36061 | EnGenius EWS356-FIT up to 1.1.30 Ping/Speed Test os command injection

Post correlati

CVE-2024-7231 | Avast Cleanup Premium link following (ZDI-24-1001)

CVE-2023-48131 | CHIGASAKI BAKERY mini-app on Line 13.6.1 Channel Access Token information disclosure

CVE-2024-29504 | Summernote up to 0.8.18 codeview cross site scripting

CVE-2023-46175 | IBM Cloud Pak for Multicloud Management up to 2.3 FP8 log file