CVE-2024-21879 | Enphase IQ Gateway prior 8.2.4225 URL Parameter command injection

Posted by Angelo Barbosa | Aug 10, 2024 | CVE

A vulnerability, which was classified as critical, was found in Enphase IQ Gateway. Affected is an unknown function of the component URL Parameter Handler. The manipulation leads to command injection.

This vulnerability is traded as CVE-2024-21879. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-21879 | Enphase IQ Gateway prior 8.2.4225 URL Parameter command injection

Related Posts

CVE-2024-1346 | LaborOfficeFree 19.10 weak password

CVE-2024-42381 | Homebrew up to 4.2.19 ELF File os/linux/elf.rb Remote Code Execution

CVE-2024-24793 | Imaging Data Commons libdicom 1.0.5 DICOM Element Parser parse_meta_element_create use after free (TALOS-2024-1931)

CVE-2024-7918 | Pocket Widget Plugin up to 0.1.3 on WordPress Setting cross site scripting