CVE-2024-25851

Netis WF2780 v2.1.40144 was discovered to contain a command injection vulnerability via the config_sequence parameter in other_para of cgitest.cgi.
Configurations

No configuration.

History

21 Nov 2024, 09:01

Type Values Removed Values Added
References () https://github.com/no1rr/Vulnerability/blob/master/netis/other_para_config_sequence.md - () https://github.com/no1rr/Vulnerability/blob/master/netis/other_para_config_sequence.md -
References () https://www.netis-systems.com/ - () https://www.netis-systems.com/ -

29 Aug 2024, 20:36

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 8.0
CWE CWE-78

11 Mar 2024, 22:15

Type Values Removed Values Added
References
  • {'url': 'https://github.com/no1rr/Vulnerability/blob/master/netis/igd_wps_set_wps_ap_ssid5g.md', 'source': 'cve@mitre.org'}
  • () https://github.com/no1rr/Vulnerability/blob/master/netis/other_para_config_sequence.md -

22 Feb 2024, 15:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-02-22 15:15

Updated : 2024-11-21 09:01


NVD link : CVE-2024-25851

Mitre link : CVE-2024-25851

CVE.ORG link : CVE-2024-25851


JSON object : View

Products Affected

No product.

CWE
CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')