CVE-2024-46316

Published October 9th, 2024

View on NVD ↗

CVSS v3

HIGH

CVSS v2

N/A

Affected

PROJECT

Description

DrayTek Vigor3900 v1.5.1.6 was discovered to contain a command injection vulnerability via the sub_2C920 function at /cgi-bin/mainfunction.cgi. This vulnerability allows attackers to execute arbitrary commands via supplying a crafted HTTP message.

glkfc/IoT-Vulnerability

Some descriptions on IoT device vulnerabilities

GitHub