CVE-2024-51254 | DrayTek Vigor 3900 1.5.1.3 mainfunction.cgi sign_cacertificate command injection

Posted by Angelo Barbosa | Oct 31, 2024 | CVE

A vulnerability, which was classified as critical, was found in DrayTek Vigor 3900 1.5.1.3. This affects the function sign_cacertificate of the file mainfunction.cgi. The manipulation leads to command injection.

This vulnerability is uniquely identified as CVE-2024-51254. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-51254 | DrayTek Vigor 3900 1.5.1.3 mainfunction.cgi sign_cacertificate command injection

Related Posts

CVE-2023-42308 | code-projects Exam Form Submission 1.0 Manage Fastrack Subjects cross site scripting

CVE-2023-0248 | Sensormatic Electronics ioSmart Gen1 up to 1.7.1 Communication information disclosure (icsa-23-348-02)

CVE-2024-4562 | Progress WhatsUp Gold up to 2023.1.1 HTTP Monitoring server-side request forgery

CVE-2024-4199 | Bulk Posts Editing Plugin up to 4.2.3 on WordPress authorization