- Description
- Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in AE1021 firmware versions 2.0.10 and earlier and AE1021PE firmware versions 2.0.10 and earlier, which may allow a logged-in user to execute an arbitrary OS command using a crafted HTTP request.
- Source
- vultures@jpcert.or.jp
- NVD status
- Received
CVSS 3.1
- Type
- Secondary
- Base score
- 7.2
- Impact score
- 5.9
- Exploitability score
- 1.2
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
- vultures@jpcert.or.jp
- CWE-78
- Hype score
- Not currently trending
CVE-2024-53688 (CVSS:7.2, HIGH) is Awaiting Analysis. Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in AE1021 firmwa..https://t.co/N5QBgWVivC #cybersecurityawareness #cybersecurity #CVE #infosec #hacker #nvd #mitre
@cracbot
23 Dec 2024
37 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-53688 Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in AE1021 firmware versions 2.0.10 and earlier and AE1021PE fi… https://t.co/cyXcFrUf1o
@CVEnew
18 Dec 2024
430 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes