CVE-2026-24788
Published
CVSS v3
N/A
CVSS v2
N/A
Affected
1
PROJECT
Description
RaspAP raspap-webgui versions prior to 3.3.6 contain an OS command injection vulnerability. If exploited, an arbitrary OS command may be executed by a user who can log in to the product.
The easiest, full-featured wireless router setup for Debian-based devices. Period.
GitHub