CVE-2024-34206

TOTOLINK outdoor CPE CP450 v4.1.0cu.747_B20191224 was discovered to contain a command injection vulnerability in the setWebWlanIdx function via the webWlanIdx parameter.
Configurations

No configuration.

History

21 Nov 2024, 09:18

Type Values Removed Values Added
References () https://github.com/n0wstr/IOTVuln/tree/main/CP450/setWebWlanIdx - () https://github.com/n0wstr/IOTVuln/tree/main/CP450/setWebWlanIdx -

03 Jul 2024, 01:59

Type Values Removed Values Added
CWE CWE-77
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 6.5
Summary
  • (es) Se descubrió que TOTOLINK outdoor CPE CP450 v4.1.0cu.747_B20191224 contiene una vulnerabilidad de inyección de comando en la función setWebWlanIdx a través del parámetro webWlanIdx.

14 May 2024, 15:38

Type Values Removed Values Added
New CVE

Information

Published : 2024-05-14 15:38

Updated : 2024-11-21 09:18


NVD link : CVE-2024-34206

Mitre link : CVE-2024-34206

CVE.ORG link : CVE-2024-34206


JSON object : View

Products Affected

No product.

CWE
CWE-77

Improper Neutralization of Special Elements used in a Command ('Command Injection')