CVE-2024-51259 | DrayTek Vigor 3900 1.5.1.3 mainfunction.cgi setup_cacertificate command injection

Inserito da Angelo Barbosa | Ott 31, 2024 | CVE

A vulnerability, which was classified as critical, has been found in DrayTek Vigor 3900 1.5.1.3. Affected by this issue is the function setup_cacertificate of the file mainfunction.cgi. The manipulation leads to command injection.

This vulnerability is handled as CVE-2024-51259. Access to the local network is required for this attack. There is no exploit available.

CVE-2024-51259 | DrayTek Vigor 3900 1.5.1.3 mainfunction.cgi setup_cacertificate command injection

Post correlati

CVE-2024-24115 | Cotonti CMS 0.9.24 Edit Page cross site scripting

CVE-2024-49681 | SWIT WP Sessions Time Monitoring Full Automatic Plugin up to 1.0.9 on WordPress sql injection

CVE-2024-0797 | Active Products Tables for WooCommerce Plugin up to 1.0.6.1 on WordPress authorization

CVE-2024-41936 | Vonets VGA-1000 up to 3.3.23.6.9 path traversal (icsa-24-214-08)