CVE-2024-44072 | Buffalo WMR-300 Request os command injection

A vulnerability, which was classified as critical, has been found in Buffalo WHR-1166DHP2, WHR-1166DHP3, WHR-1166DHP4, WSR-1166DHP3, WSR-600DHP, WEX-300HPTX, N, WEX-733DHP2, WEX-1166DHP2, WEX-1166DHPS, WEX-300HPS, WEX-733DHPS, WEX-733DHPTX, WEX-1166DHP, WEX-733DHP, WHR-1166DHP, WHR-300HP2, WHR-600D and WMR-300. Affected by this issue is some unknown functionality of the component Request Handler. The manipulation leads to os command injection.

This vulnerability is handled as CVE-2024-44072. The attack can only be done within the local network. There is no exploit available.

CVE-2024-44072 | Buffalo WMR-300 Request os command injection

Related Posts

CVE-2024-30550 | wpdevart Responsive Image Gallery Album Plugin up to 2.0.3 on WordPress cross site scripting

CVE-2024-33300 | Typora up to 1.7 Markdown Editor cross site scripting

CVE-2024-23724 | Ghost up to 5.76.0 SVG Profile Picture cross site scripting

CVE-2024-2565 | PandaXGO PandaX up to 20240310 File Extension upload.go file unrestricted upload