NVD Vulnerability Detail

Search Exploit, PoC

Exploit DB

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2024-9166

Summary	The device enables an unauthorized attacker to execute system commands with elevated privileges. This exploit is facilitated through the use of the 'getcommand' query within the application, allowing the attacker to gain root access.
Publication Date	Sept. 27, 2024, 2:15 a.m.
Registration Date	Sept. 27, 2024, 5 a.m.
Last Update	Sept. 30, 2024, 9:46 p.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://www.cisa.gov/news-events/ics-advisories/icsa-24-270-03

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-78	OSコマンド・インジェクション	https://cwe.mitre.org/data/definitions/78.html