An issue in Kasda LinkSmart Router KW5515 v1.7 and before allows an authenticated remote attacker to execute arbitrary OS commands via cgi parameters.
History

Wed, 27 Nov 2024 17:15:00 +0000

Type Values Removed Values Added
First Time appeared Kasda
Kasda kw5515 Firmware
Weaknesses CWE-77
CPEs cpe:2.3:o:kasda:kw5515_firmware:*:*:*:*:*:*:*:*
Vendors & Products Kasda
Kasda kw5515 Firmware
Metrics cvssV3_1

{'score': 9.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Wed, 20 Nov 2024 19:00:00 +0000

Type Values Removed Values Added
Description An issue in Kasda LinkSmart Router KW5515 v1.7 and before allows an authenticated remote attacker to execute arbitrary OS commands via cgi parameters.
References

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2024-11-20T00:00:00

Updated: 2024-11-27T16:37:10.552Z

Reserved: 2024-04-23T00:00:00

Link: CVE-2024-33439

cve-icon Vulnrichment

Updated: 2024-11-27T16:36:57.404Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-11-20T19:15:06.010

Modified: 2024-11-27T17:15:11.093

Link: CVE-2024-33439

cve-icon Redhat

No data.