CVE-2024-29292

Multiple OS Command Injection vulnerabilities affecting Kasda LinkSmart Router KW6512 <= v1.3 enable an authenticated remote attacker to execute arbitrary OS commands via various cgi parameters.

CVSS

No CVSS.

References

Link	Resource
https://gist.github.com/QuartzDust/debfd7ddf934a9f5609d7f1a8cd71154
https://www.kasdanet.com/ENHCSZ/pro_view-120.html

Configurations

No configuration.

History

20 Nov 2024, 21:15

Type	Values Removed	Values Added
Summary	(en) Multiple OS Command Injection vulnerabilities affecting Kasda KW6512 router software version KW6512_Linux_V1.0 enable an authenticated remote attacker to execute arbitrary OS commands via Quick Setup and Internet page parameters passed to internet.cgi.	(en) Multiple OS Command Injection vulnerabilities affecting Kasda LinkSmart Router KW6512 <= v1.3 enable an authenticated remote attacker to execute arbitrary OS commands via various cgi parameters.

20 Nov 2024, 18:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-11-20 18:15

Updated : 2024-11-20 21:15

NVD link : CVE-2024-29292

Mitre link : CVE-2024-29292

CVE.ORG link : CVE-2024-29292

JSON object : View

Products Affected

No product.

CWE

No CWE.

JSON object

Attach tags to CVE-2024-29292

Attach tags to `CVE-2024-29292`