CVE-2024-7578

NVD Published Date: August 07, 2024 at 01:16 PM
NVD Last Modified: August 28, 2024 at 06:27 PM
Download Patch
Vulnerability ID
CVE-2024-7578
Severity
CRITICAL
Severity Score
9.8
Summary
A vulnerability was found in Alien Technology ALR-F800 up to 19.10.24.00. It has been classified as critical. Affected is an unknown function of the file /var/www/cmd.php. The manipulation of the argument cmd leads to improper authorization. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Mitigation and Patches
-
Metasploit Payload
-
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE ID
CWE-285

Recent Publish

2024-07 Dynamic Cumulative Update for Windows 11 for x64-based Systems (KB5040431)

2024-07 Dynamic Cumulative Update for Windows 11 for ARM64-based Systems (KB5040431)

2024-07 Atualização Cumulativa do Windows 11 para sistemas operacionais baseados em x64 (KB5040431)

2024-07 Atualização Cumulativa do Windows 11 para sistemas operacionais baseados em ARM64 (KB5040431)

2024-07 Cumulative Update for Windows Server 2016 for x64-based Systems (KB5040434)

2024-07 Cumulative Update for Windows 10 Version 1607 for x64-based Systems (KB5040434)

See SecOps Solution
in action

Schedule Demo