Today > 13 Critical | 36 High | 32 Medium vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-55547

Dec. 10, 2024, 8:15 p.m.

Tags

CWE-77
office@cyberdanube.com
2024-12-10
CVE-2024-55547

Product(s) Impacted

NET-SNMP

  • through 2.01e

Description

SNMP objects in NET-SNMP used in ORing IAP-420 allows Command Injection. This issue affects IAP-420: through 2.01e.

Weaknesses

CWE-77
Improper Neutralization of Special Elements used in a Command ('Command Injection')

The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.

CWE ID: 77

Date

Published: Dec. 10, 2024, 5:15 p.m.

Last Modified: Dec. 10, 2024, 8:15 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

office@cyberdanube.com

References

https://cyberdanube.com/ office@cyberdanube.com
https://cyberdanube.com/ 134c704f-9b21-4f2e-91b3-4a467353bcc0