CVE-2024-7397
CVE-2024-7397
9.3
CriticalPublished:
Last updated:
Source:office@cyberdanube.com
Deferred
Weakness (CWE)
CVSS Vector
v4.0- Attack Vector
- Network
- Attack Complexity
- Low
- Attack Requirements
- None
- Privileges Required
- None
- User Interaction
- None
- Confidentiality (Vulnerable)
- High
- Integrity (Vulnerable)
- High
- Availability (Vulnerable)
- High
- Confidentiality (Subsequent)
- None
- Integrity (Subsequent)
- None
- Availability (Subsequent)
- None
Description
Improper filering of special characters result in a command ('command injection') vulnerability in Korenix JetPort 5601v3.This issue affects JetPort 5601v3: through 1.2.
References
office@cyberdanube.com
https://cyberdanube.com/de/en-multiple-vulnerabilities-in-korenix-jetport/af854a3a-2127-422b-91ae-364da2661108
http://seclists.org/fulldisclosure/2024/Aug/2