CVE-2024-28138 – An unauthenticated attacker with network access to

12月 10, 2024
9:16 am

CVE ID : CVE-2024-28138

Published : Dec. 10, 2024, 8:15 a.m. | 1 hour ago

Description : An unauthenticated attacker with network access to the affected device’s web interface can execute any system command via the “msg_events.php” script as the www-data user. The HTTP GET parameter “data” is not properly sanitized.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-28138 – An unauthenticated attacker with network access to

Elvescore.io

Recent Posts

CVE-2024-12949 – Code-projects Travel Management System SQL Injection Vulnerability

CVE-2024-12950 – Adobe Code-Projects Travel Management System SQL Injection Vulnerability

CVE-2024-47148 – Honor Privilege Assignment Vulnerability

CVE-2024-47153 – Honor Information Leak Vulnerability

CVE-2024-47154 – Honor Information Leak Vulnerability

CVE-2024-47155 – Honor Information Leak Vulnerability

CVE-2024-28138 – An unauthenticated attacker with network access to

CVE-2024-28138 – An unauthenticated attacker with network access to