CVE-2024-36061 | EnGenius EWS356-FIT up to 1.1.30 Ping/Speed Test os command injection

Inserito da Angelo Barbosa | Nov 11, 2024 | CVE

A vulnerability was found in EnGenius EWS356-FIT up to 1.1.30 and classified as critical. This issue affects some unknown processing of the component Ping/Speed Test. The manipulation leads to os command injection.

The identification of this vulnerability is CVE-2024-36061. The attack can only be initiated within the local network. There is no exploit available.

CVE-2024-36061 | EnGenius EWS356-FIT up to 1.1.30 Ping/Speed Test os command injection

Post correlati

CVE-2024-35628 | 10Web Photo Gallery Plugin up to 1.8.24 on WordPress authorization

CVE-2024-24926 | UnitedThemes Brooklyn Theme up to 4.9.7.6 on WordPress deserialization

CVE-2024-29946 | Splunk Enterprise up to 9.0.8/9.1.3/9.2.0 Dashboard Studio App input validation (SVD-2024-0302)

CVE-2023-50199 | D-Link G416 httpd improper authentication (ZDI-23-1815)