Security Advisory

CVE-2020-24849

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-11-05 14:19:40

Last updated 2024-08-04 15:19:09

Assigner mitre

State PUBLISHED

Description

A remote code execution vulnerability is identified in FruityWifi through 2.4. Due to improperly escaped shell metacharacters obtained from the POST request at the page_config_adv.php page, it is possible to perform remote code execution by an authenticated attacker. This is similar to CVE-2018-17317.

← Browse all CVEs View on cve.org ↗