Security Advisory

CVE-2024-31408

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-11-22 00:10:50

Last updated 2024-12-05 20:44:27

Assigner jpcert

State PUBLISHED

Description

OS command injection vulnerability exists in AIPHONE IX SYSTEM and IXG SYSTEM. A network-adjacent authenticated attacker may execute an arbitrary OS command with root privileges by sending a specially crafted request.

← Browse all CVEs View on cve.org ↗