CVE-2024-39793 [CRITICAL] :

Multiple external config control vulnerabilities exist in the nas.cgi set_nas() proftpd functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to permission bypass. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.A configuration injection vulnerability exists in the `ftp_name` POST parameter.

O'Reilly Raidar

ai
news
technology
trends

Now, next, and beyond. Tracking need-to-know trends at the intersection of business and technology.

Visit Website

Listed: Thu Jun 06 2024