CVE-2024-44334 | D-Link DI-7400G+V2 24.04.18 CGI upgrade_filter.asp Privilege Escalation

Inserito da Angelo Barbosa | Set 9, 2024 | CVE

A vulnerability was found in D-Link DI-7003GV2, DI-7100G+V2, DI-7100GV2, DI-7200GV2, DI-7300G+V2 and DI-7400G+V2 24.04.18 and classified as critical. Affected by this issue is some unknown functionality of the file upgrade_filter.asp of the component CGI Handler. The manipulation leads to Privilege Escalation.

This vulnerability is handled as CVE-2024-44334. The attack may be launched remotely. There is no exploit available.

CVE-2024-44334 | D-Link DI-7400G+V2 24.04.18 CGI upgrade_filter.asp Privilege Escalation

Post correlati

CVE-2024-25106 | OpenObserve up to 0.7.x {email_id} access control (GHSA-3m5f-9m66-xgp7)

CVE-2024-20454 | Cisco SPA300/SPA500 up to 7.6.2SR7 Web-based Management Interface buffer overflow (cisco-sa-spa-http-vulns-RJZmX2Xz)

CVE-2024-23644 | Trillium trillium-client/trillium-http HeaderValue response splitting

CVE-2024-34740 | Google Android 12/12L/13/14 BinaryXmlSerializer.java attributeBytesBase64/attributeBytesHex integer overflow