CVE-2024-44333 | D-Link DI-7400G+V2 24.04.18 CGI usb_paswd.asp Privilege Escalation

Inserito da Angelo Barbosa | Set 9, 2024 | CVE

A vulnerability was found in D-Link DI-7003GV2, DI-7100G+V2, DI-7100GV2, DI-7200GV2, DI-7300G+V2 and DI-7400G+V2 24.04.18. It has been classified as critical. Affected is an unknown function of the file usb_paswd.asp of the component CGI Handler. The manipulation leads to Privilege Escalation.

This vulnerability is traded as CVE-2024-44333. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-44333 | D-Link DI-7400G+V2 24.04.18 CGI usb_paswd.asp Privilege Escalation

Post correlati

CVE-2024-35179 | stalwartlabs mail-server up to 0.7.x Web Interface privilege dropping / lowering errors (GHSA-5pfx-j27j-4c6h)

CVE-2024-37818 | Strapi 4.24.4 GET Request /strapi.io/_next/image server-side request forgery

CVE-2024-50246 | Linux Kernel up to 6.6.59/6.11.6 ntfs3 alloc_size Privilege Escalation (e91fbb21f248/2fcae4c2014a/c4a8ba334262)

CVE-2024-22365 | Linux-PAM up to 1.5.3 pam_namespace.so protect_dir denial of service