CVE-2024-5194 | Arris VAP2500 08.50 /assoc_table.php id command injection

Posted by Angelo Barbosa | May 22, 2024 | CVE

A vulnerability was found in Arris VAP2500 08.50. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /assoc_table.php. The manipulation of the argument id leads to command injection.

This vulnerability is known as CVE-2024-5194. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-5194 | Arris VAP2500 08.50 /assoc_table.php id command injection

Related Posts

CVE-2023-46182 | IBM Sterling Secure Proxy 6.0.3/6.1.0 Web UI cross site scripting (XFDB-269692)

CVE-2024-4103 | ADFO Plugin up to 1.9.0 on WordPress Admin Dashboard Page cross-site request forgery

CVE-2024-2939 | Campcodes Online Examination System 1.0 updateExaminee.php id cross site scripting

CVE-2024-1574 | Mitsubishi Electric ICONICS/AlarmWorX Multimedia/MobileHMI unknown vulnerability (icsa-24-184-03)