CVE-2024-51304 | Draytek Vigor 3900 1.5.1.3 mainfunction.cgi ldap_search_dn command injection

Inserito da Angelo Barbosa | Ott 30, 2024 | CVE

A vulnerability has been found in Draytek Vigor 3900 1.5.1.3 and classified as critical. This vulnerability affects the function ldap_search_dn of the file mainfunction.cgi. The manipulation leads to command injection.

This vulnerability was named CVE-2024-51304. The attack can be initiated remotely. There is no exploit available.

CVE-2024-51304 | Draytek Vigor 3900 1.5.1.3 mainfunction.cgi ldap_search_dn command injection

Post correlati

CVE-2024-2406 | Gacjie Server up to 1.0 Upload.php index file unrestricted upload

CVE-2024-49696 | RoboSoft Robo Gallery Plugin up to 3.2.21 on WordPress cross site scripting

CVE-2024-27054 | Linux Kernel up to 5.15.152/6.1.82/6.6.22/6.7.10/6.8.1 s390 Privilege Escalation

CVE-2024-41868 | Adobe Audition up to 23.6.6/24.4.1 out-of-bounds (apsb24-54)