Password vulnerability found in Vinga WR-AC1200 81.102.1.4370 and before allows a remote attacker to execute arbitrary code via the password parameter at the /goform/sysTools and /adm/systools.asp endpoints.
References
Link | Resource |
---|---|
https://gist.github.com/yinfei6/3664387cb5b66b68c7eff4bfdb51b2d6 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-04-26T00:00:00
Updated: 2023-04-26T00:00:00
Reserved: 2023-01-30T00:00:00
Link: CVE-2023-24796
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-04-26T13:15:08.807
Modified: 2023-05-04T19:42:22.003
Link: CVE-2023-24796
JSON object: View
Redhat Information
No data.
CWE