CVE-2024-41468 | Tenda FH1201 1.2.0.14 /goform/exeCommand cmdinput command injection

Inserito da Angelo Barbosa | Lug 26, 2024 | CVE

A vulnerability, which was classified as critical, was found in Tenda FH1201 1.2.0.14. This affects an unknown part of the file /goform/exeCommand. The manipulation of the argument cmdinput leads to command injection.

This vulnerability is uniquely identified as CVE-2024-41468. The attack can only be done within the local network. There is no exploit available.

CVE-2024-41468 | Tenda FH1201 1.2.0.14 /goform/exeCommand cmdinput command injection

Post correlati

CVE-2024-8165 | Chengdu Everbrite Network Technology BeikeShop up to 1.5.5 export exportZip path path traversal

CVE-2024-23294 | Apple macOS up to 14.3 Privilege Escalation

CVE-2023-43472 | MLFlow up to 2.8.1 REST API information disclosure

CVE-2024-23739 | Discord up to 0.0.291 on macOS Setting RunAsNode/enableNodeClilnspectArguments Privilege Escalation