CVE-2024-5241 | Huashi Private Cloud CDN Live Streaming Acceleration Server ipconfig_new.php os command injection

Inserito da Angelo Barbosa | Mag 22, 2024 | CVE

A vulnerability was found in Huashi Private Cloud CDN Live Streaming Acceleration Server up to 20240520. It has been classified as critical. Affected is an unknown function of the file /manager/ipconfig_new.php. The manipulation of the argument dev leads to os command injection.

This vulnerability is traded as CVE-2024-5241. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-5241 | Huashi Private Cloud CDN Live Streaming Acceleration Server ipconfig_new.php os command injection

Post correlati

CVE-2024-32482 | Tillitis tkey-device-signer up to 0.x USB Interface out-of-bounds (GHSA-frqc-62hv-379p)

CVE-2023-43016 | IBM Security Access Manager Container up to 10.0.6.1 empty password in configuration file (XFDB-266154)

CVE-2024-0658 | Insert PHP Code Snippet Plugin up to 1.3.4 on WordPress cross site scripting

CVE-2024-33954 | Atanas Yonkov Pliska Plugin up to 0.3.5 on WordPress cross site scripting