Today > 1 Critical | 6 High | 24 Medium vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-9154

Dec. 19, 2024, 4:15 p.m.

Tags

CWE-94
office@cyberdanube.com
2024-12-19
CVE-2024-9154

Product(s) Impacted

HMS Networks Ewon Flexy 205

  • through 14.8s0 (#2633)

Description

A code injection vulnerability in HMS Networks Ewon Flexy 205 allows executing commands on system level on the device. This issue affects Ewon Flexy 205: through 14.8s0 (#2633).

Weaknesses

CWE-94
Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

CWE ID: 94

Date

Published: Dec. 19, 2024, 4:15 p.m.

Last Modified: Dec. 19, 2024, 4:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

office@cyberdanube.com

References

https://cyberdanube.com/ office@cyberdanube.com