CVE-2024-9200 – Zyxel VMG4005-B50 Host Parameter Command Injection Vulnerability

12月 3, 2024
3:16 am

CVE ID : CVE-2024-9200

Published : Dec. 3, 2024, 2:15 a.m. | 1 hour ago

Description : A post-authentication command injection vulnerability in the “host” parameter of the diagnostic function in Zyxel VMG4005-B50A firmware versions through V5.15(ABQA.2.2)C0 could allow an authenticated attacker with administrator privileges to execute operating system (OS) commands on a vulnerable device.

Severity: 7.2 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-9200 – Zyxel VMG4005-B50 Host Parameter Command Injection Vulnerability

Elvescore.io

Recent Posts

CVE-2024-12947 – Codezips Hospital Management System SQL Injection Vulnerability

CVE-2024-12948 – Travel Management System Travel SQL Injection

CVE-2024-47151 – Honor File Writing Code Execution Vulnerability

CVE-2024-47156 – Honor Information Leak Vulnerability

CVE-2024-12945 – Simple Car Rental System SQL Injection

CVE-2024-12946 – “1000 Projects Attendance Tracking Management System SQL Injection Vulnerability”

CVE-2024-9200 – Zyxel VMG4005-B50 Host Parameter Command Injection Vulnerability

CVE-2024-9200 – Zyxel VMG4005-B50 Host Parameter Command Injection Vulnerability