CVE-2024-51296 | Draytek Vigor 3900 1.5.1.3 mainfunction.cgi pingtrace command injection

Posted by Angelo Barbosa | Oct 30, 2024 | CVE

A vulnerability was found in Draytek Vigor 3900 1.5.1.3 and classified as critical. This issue affects the function pingtrace of the file mainfunction.cgi. The manipulation leads to command injection.

The identification of this vulnerability is CVE-2024-51296. The attack may be initiated remotely. There is no exploit available.

CVE-2024-51296 | Draytek Vigor 3900 1.5.1.3 mainfunction.cgi pingtrace command injection

Related Posts

CVE-2024-34205 | Totolink CP450 4.1.0cu.747_B20191224 download_firmware command injection

CVE-2024-27400 | Linux Kernel prior 6.9.0 amdgpu amdgpu_ttm_move heap-based overflow (d3a9331a6591)

CVE-2024-47387 | LinkGraph Search Atlas SEO Plugin up to 1.8.2 on WordPress cross site scripting

CVE-2024-5111 | Campcodes Complete Web-Based School Management System 1.0 student_payment_invoice1.php date sql injection