CVE-2024-45893 | DrayTek Vigor 3900 1.5.1.3 cgi-bin/mainfunction.cgi setSWMOption action command injection

Posted by Angelo Barbosa | Nov 4, 2024 | CVE

A vulnerability classified as critical has been found in DrayTek Vigor 3900 1.5.1.3. This affects the function setSWMOption of the file cgi-bin/mainfunction.cgi. The manipulation of the argument action leads to command injection.

This vulnerability is uniquely identified as CVE-2024-45893. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-45893 | DrayTek Vigor 3900 1.5.1.3 cgi-bin/mainfunction.cgi setSWMOption action command injection

Related Posts

CVE-2023-7036 | automad up to 1.10.9 Content Type FileCollectionController.php upload unrestricted upload

CVE-2023-49156 | GoDaddy Email Marketing Plugin up to 1.4.3 on WordPress authorization

CVE-2024-44087 | Siemens Automation License Manager up to 5.x/6.2 Upd2 TCP Port 4410 integer overflow (ssa-103653)

CVE-2023-49838 | KlbTheme on WordPress cross-site request forgery