CVE-2024-51255 | DrayTek Vigor 3900 1.5.1.3 mainfunction.cgi ruequest_certificate command injection

Inserito da Angelo Barbosa | Ott 31, 2024 | CVE

A vulnerability classified as critical was found in DrayTek Vigor 3900 1.5.1.3. Affected by this vulnerability is the function ruequest_certificate of the file mainfunction.cgi. The manipulation leads to command injection.

This vulnerability is known as CVE-2024-51255. The attack can be launched remotely. There is no exploit available.

CVE-2024-51255 | DrayTek Vigor 3900 1.5.1.3 mainfunction.cgi ruequest_certificate command injection

Post correlati

CVE-2023-39254 | Dell DUP Framework up to 4.9.9 uncontrolled search path (dsa-2023-338)

CVE-2024-43383 | Apache Lucene.Net.Replicator up to 4.8.0-beta00016 Privilege Escalation

CVE-2024-4662 | Oxygen Builder Plugin up to 4.8.2 on WordPress improper authentication

CVE-2024-9798 | Open Mainframe Project Zowe up to 1.28.7/2.17.x Health Endpoint information disclosure