CVE-2024-44845 | DrayTek Vigor3900 1.5.1.6 filter_string value command injection

Posted by Angelo Barbosa | Sep 6, 2024 | CVE

A vulnerability was found in DrayTek Vigor3900 1.5.1.6. It has been rated as critical. Affected by this issue is the function filter_string. The manipulation of the argument value leads to command injection.

This vulnerability is handled as CVE-2024-44845. The attack may be launched remotely. There is no exploit available.

CVE-2024-44845 | DrayTek Vigor3900 1.5.1.6 filter_string value command injection

Related Posts

CVE-2024-44796 | PicUploader fcf82ea /auth/AzureRedirect.php error_description cross site scripting (ID 90)

CVE-2024-36728 | TRENDnet TEW-827DRU up to 2.06B04 Setting apply.cgi vlan_setting dns1/dns2 stack-based overflow

CVE-2024-28877 | MicroDicom DICOM Viewer prior 2024.2 stack-based overflow (icsma-24-163-01)

CVE-2024-5700 | Mozilla Firefox up to 126 memory corruption