Vector Strings

Severity Score: N/A
Severity: N/A
Exploitability Score: N/A
Impact Score: N/A

Access Vector (AV):
Access Complexity (AC):
Authentication (AU): N/A
Confidentiality (C): N/A
Integrity (I): N/A
Availability (A): N/A

Published Date: 2024-10-30
Last Modified: 2024-11-01

CVE-2024-51304

About:
In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the ldap_search_dn function.

References

https://github.com/fu37kola/cve/blob/main/DrayTek/Vigor3900/1.5.1.3/DrayTek_Vigor_3900_1.5.1.3.pdf

Related CVEs

No related CVEs.

Empower Your Security Strategy with Rainforest

Discover vulnerabilities early, prioritize critical threats, and protect what truly matters. Rainforest streamlines your security operations, saving you time and reducing costs, so you can focus on what drives your business forward.

Book a Demo