CVE-2024-51254 | DrayTek Vigor 3900 1.5.1.3 mainfunction.cgi sign_cacertificate command injection

Posted by Angelo Barbosa | Oct 31, 2024 | CVE

A vulnerability, which was classified as critical, was found in DrayTek Vigor 3900 1.5.1.3. This affects the function sign_cacertificate of the file mainfunction.cgi. The manipulation leads to command injection.

This vulnerability is uniquely identified as CVE-2024-51254. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-51254 | DrayTek Vigor 3900 1.5.1.3 mainfunction.cgi sign_cacertificate command injection

Related Posts

CVE-2024-2470 | Simple Ajax Chat Plugin prior 20240412 on WordPress Setting cross site scripting

CVE-2024-5652 | Docker Desktop up to 4.30.x on Windows Daemon denial of service

CVE-2024-1251 | Tongda OA 2017 up to 11.10 delete.php DELETE_STR sql injection

CVE-2024-43331 | VeronaLabs WP SMS Plugin up to 6.9.3 on WordPress authorization