exploitDog

GHSA-2qxr-7mvv-54x4

Опубликовано: 04 нояб. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 8

Описание

In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the backup function.

In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the backup function.

Ссылки

EPSS

Процентиль: 30%

0.0011

Низкий

8 High

CVSS3

CVE ID

Дефекты

CWE-78

Связанные уязвимости

CVE-2024-51251

CVSS3: 8

nvd

больше 1 года назад

In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the backup function.

EPSS

Процентиль: 30%

0.0011

Низкий

8 High

CVSS3

CVE ID

Дефекты

CWE-78