Command injection vulnerability in Movistar 4G router affecting version ES_WLD71-T1_v2.0.201820. This vulnerability allows an authenticated user to execute commands inside the router by making a POST request to the URL '/cgi-bin/gui.cgi'.
References
Configurations
No configuration.
History
13 Mar 2024, 12:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-03-13 12:15
Updated : 2024-03-13 12:33
NVD link : CVE-2024-2415
Mitre link : CVE-2024-2415
CVE.ORG link : CVE-2024-2415
JSON object : View
Products Affected
No product.
CWE
CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')