CVE-2024-43804 | Roxy-WI up to 8.0 server_mod.subprocess_execute os command injection (GHSA-qc52-vwwj-5585)

Posted by Angelo Barbosa | Aug 29, 2024 | CVE

A vulnerability was found in Roxy-WI up to 8.0. It has been declared as critical. This vulnerability affects the function server_mod.subprocess_execute. The manipulation leads to os command injection.

This vulnerability was named CVE-2024-43804. The attack can be initiated remotely. There is no exploit available.

CVE-2024-43804 | Roxy-WI up to 8.0 server_mod.subprocess_execute os command injection (GHSA-qc52-vwwj-5585)

Related Posts

CVE-2024-4429 | OpenText iManager up to 3.2.6.0300 cross-site request forgery

CVE-2024-36509 | Fortinet FortiWeb up to 6.3.23/7.0.10/7.2.10/7.4.3/7.6.0 Log Access Event Page exposure of sensitive system information to an unauthorized control sphere (FG-IR-24-180)

CVE-2024-22191 | avo prior 3.2.4 key_value cross site scripting

CVE-2021-31314 | Falcon Security ejinshan 8+ unrestricted upload