exploitDog

GHSA-g6pp-x9v7-qxm2

Опубликовано: 04 нояб. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 8

Описание

In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the doL2TP function.

In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the doL2TP function.

Ссылки

EPSS

Процентиль: 19%

0.00061

Низкий

8 High

CVSS3

CVE ID

Дефекты

CWE-78

Связанные уязвимости

CVE-2024-51253

CVSS3: 8

nvd

больше 1 года назад

In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the doL2TP function.

EPSS

Процентиль: 19%

0.00061

Низкий

8 High

CVSS3

CVE ID

Дефекты

CWE-78