Security Advisory

CVE-2024-45890

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-11-04 00:00:00

Last updated 2024-11-04 17:00:03

Assigner mitre

State PUBLISHED

Description

DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability This vulnerability occurs when the `action` parameter in `cgi-bin/mainfunction.cgi` is set to `download_ovpn.`

← Browse all CVEs View on cve.org ↗