CVE-2024-51254 | DrayTek Vigor 3900 1.5.1.3 mainfunction.cgi sign_cacertificate command injection

Posted by Angelo Barbosa | Oct 31, 2024 | CVE

A vulnerability, which was classified as critical, was found in DrayTek Vigor 3900 1.5.1.3. This affects the function sign_cacertificate of the file mainfunction.cgi. The manipulation leads to command injection.

This vulnerability is uniquely identified as CVE-2024-51254. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-51254 | DrayTek Vigor 3900 1.5.1.3 mainfunction.cgi sign_cacertificate command injection

Related Posts

CVE-2024-1099 | Rebuild up to 3.5.5 /filex/read-raw getFileOfData url cross site scripting

CVE-2024-9781 | Wireshark up to 4.2.7/4.4.0 AppleTalk Dissector/RELOAD Framing Dissector missing values

CVE-2024-3610 | WP Child Theme Generator Plugin up to 1.1.1 on WordPress authorization

CVE-2024-2511 | OpenSSL up to 1.1.1x/3.0.13/3.1.5/3.2.1 TLSv1.3 denial of service