CVE-2024-48825

Tenda AC7 v.15.03.06.44 ate_ifconfig_set has pre-authentication command injection allowing remote attackers to execute arbitrary code.
Configurations

No configuration.

History

29 Oct 2024, 19:35

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 8.0
CWE CWE-78

29 Oct 2024, 14:34

Type Values Removed Values Added
Summary
  • (es) Tenda AC7 v.15.03.06.44 ate_ifconfig_set tiene inyección de comando de pre-autenticación que permite a atacantes remotos ejecutar código arbitrario.

28 Oct 2024, 20:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-10-28 20:15

Updated : 2024-10-29 19:35


NVD link : CVE-2024-48825

Mitre link : CVE-2024-48825

CVE.ORG link : CVE-2024-48825


JSON object : View

Products Affected

No product.

CWE
CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')