CVE-2024-51254 | DrayTek Vigor 3900 1.5.1.3 mainfunction.cgi sign_cacertificate command injection

Posted by Angelo Barbosa | Oct 31, 2024 | CVE

A vulnerability, which was classified as critical, was found in DrayTek Vigor 3900 1.5.1.3. This affects the function sign_cacertificate of the file mainfunction.cgi. The manipulation leads to command injection.

This vulnerability is uniquely identified as CVE-2024-51254. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-51254 | DrayTek Vigor 3900 1.5.1.3 mainfunction.cgi sign_cacertificate command injection

Related Posts

CVE-2024-2257 | Digisol DG-GR1321 3.2.02 weak password (CIVN-2024-0158)

CVE-2024-11055 | 1000 Projects Beauty Parlour Management System 1.0 /admin/admin-profile.php adminname sql injection

CVE-2024-42149 | Linux Kernel up to 6.9.8 fs_bdev_thaw denial of service (25b1e3906e05/2ae4db5647d8)

CVE-2023-5691 | ChatBot Plugin up to 2.3.9 on WordPress cross site scripting