CVE-2024-44845 | DrayTek Vigor3900 1.5.1.6 filter_string value command injection

Inserito da Angelo Barbosa | Set 6, 2024 | CVE

A vulnerability was found in DrayTek Vigor3900 1.5.1.6. It has been rated as critical. Affected by this issue is the function filter_string. The manipulation of the argument value leads to command injection.

This vulnerability is handled as CVE-2024-44845. The attack may be launched remotely. There is no exploit available.

CVE-2024-44845 | DrayTek Vigor3900 1.5.1.6 filter_string value command injection

Post correlati

CVE-2024-42061 | Zyxel ATP/USG FLEX/USG FLEX 50(W)/USG20(W)-VPN up to 5.38 URL dynamic_script.cgi cross site scripting

CVE-2024-32927 | Google Android RadioExt.cpp sendDeviceState_1_6 use after free

CVE-2023-45921 | vim 9.0 File handle_viminfo_register null pointer dereference

CVE-2024-7399 | Samsung Electronics MagicINFO 9 Server prior 21.1050 path traversal