CVE-2024-44845 | DrayTek Vigor3900 1.5.1.6 filter_string value command injection

Inserito da Angelo Barbosa | Set 6, 2024 | CVE

A vulnerability was found in DrayTek Vigor3900 1.5.1.6. It has been rated as critical. Affected by this issue is the function filter_string. The manipulation of the argument value leads to command injection.

This vulnerability is handled as CVE-2024-44845. The attack may be launched remotely. There is no exploit available.

CVE-2024-44845 | DrayTek Vigor3900 1.5.1.6 filter_string value command injection

Post correlati

CVE-2023-4818 | PAX Technology A920 USB input validation

CVE-2024-47772 | Discourse up to 3.3.1/3.4.0.beta1 Chat Message cross site scripting (GHSA-67mh-xhmf-c56h)

CVE-2024-46261 | cute_headers cute_png 1.05 cute_png.h cp_make32 heap-based overflow

CVE-2024-10136 | code-projects Pharmacy Management System 1.0 /manage_invoice.php invoice_number sql injection