CVE-2024-51260 | DrayTek Vigor 3900 1.5.1.3 mainfunction.cgi acme_process command injection

Posted by Angelo Barbosa | Oct 31, 2024 | CVE

A vulnerability, which was classified as critical, has been found in DrayTek Vigor 3900 1.5.1.3. Affected by this issue is the function acme_process of the file mainfunction.cgi. The manipulation leads to command injection.

This vulnerability is handled as CVE-2024-51260. The attack may be launched remotely. There is no exploit available.

CVE-2024-51260 | DrayTek Vigor 3900 1.5.1.3 mainfunction.cgi acme_process command injection

Related Posts

CVE-2023-52180 | Really Simple Plugins Recipe Maker For Your Food Blog from Zip Recipes Plugin sql injection

CVE-2024-35183 | wolfi-dev wolfictl up to 0.16.9 file access (GHSA-8fg7-hp93-qhvr)

CVE-2023-39204: Zoom Client buffer overflow

CVE-2023-44396 | Combodo iTop up to 2.7.9/3.0.3/3.1.0 Dashlet Edits Ajax Endpoint cross site scripting