CVE-2024-50369 | Advantech EKI-6333AC-2G/EKI-6333AC-2GD/EKI-6333AC-1GPO API multiple_ssid_htm os command injection

Posted by Angelo Barbosa | Nov 26, 2024 | CVE

A vulnerability, which was classified as critical, was found in Advantech EKI-6333AC-2G, EKI-6333AC-2GD and EKI-6333AC-1GPO. This affects the function multiple_ssid_htm of the component API. The manipulation leads to os command injection.

This vulnerability is uniquely identified as CVE-2024-50369. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-50369 | Advantech EKI-6333AC-2G/EKI-6333AC-2GD/EKI-6333AC-1GPO API multiple_ssid_htm os command injection

Related Posts

CVE-2024-28752 | Apache CXF up to 3.5.7/3.6.2/4.0.3 Aegis Databinding server-side request forgery

CVE-2024-24834 | BEAR Plugin up to 1.1.4 on WordPress cross site scripting

CVE-2024-3720 | Tianwell Fire Intelligent Command Platform 1.1.1.1 API Interface /mfsNotice/page gsdwid sql injection

CVE-2024-0556 | Full Compass Systems WIC1200 1.1 on Passwords weak encoding for password