EnGenius EWS356-FIR 1.1.30 and earlier devices allow a remote attacker to execute arbitrary OS commands via the Controller connectivity parameter.
Metrics
Affected Vendors & Products
References
History
Fri, 29 Nov 2024 21:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Engenius
Engenius ews356 Fit Firmware |
|
Weaknesses | CWE-78 | |
CPEs | cpe:2.3:o:engenius:ews356_fit_firmware:*:*:*:*:*:*:*:* | |
Vendors & Products |
Engenius
Engenius ews356 Fit Firmware |
|
Metrics |
cvssV3_1
|
Wed, 27 Nov 2024 16:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | EnGenius EWS356-FIR 1.1.30 and earlier devices allow a remote attacker to execute arbitrary OS commands via the Controller connectivity parameter. | |
References |
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-11-27T00:00:00
Updated: 2024-11-29T21:02:47.739Z
Reserved: 2024-04-08T00:00:00
Link: CVE-2024-31976
Vulnrichment
Updated: 2024-11-29T21:02:41.958Z
NVD
Status : Awaiting Analysis
Published: 2024-11-27T17:15:10.913
Modified: 2024-11-29T21:15:05.093
Link: CVE-2024-31976
Redhat
No data.