Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2020-24849
HistoryNov 05, 2020 - 3:15 p.m.

CVE-2020-24849

2020-11-0515:15:33
Google
osv.dev
1
remote code execution
fruitywifi
authenticated attacker
shell commands
metacharacters
post request
cve-2020-24849
cve-2018-17317

AI Score

7.5

Confidence

Low

EPSS

0.053

Percentile

93.1%

JSON

A remote code execution vulnerability is identified in FruityWifi through 2.4. Due to improperly escaped shell metacharacters obtained from the POST request at the page_config_adv.php page, it is possible to perform remote code execution by an authenticated attacker. This is similar to CVE-2018-17317.

Related

cve 3
prion 3
cvelist 3
nvd 3
osv 2
cve
cve
CVE-2020-24849
2020-11-05 15:15:33
CVE-2018-17317
2018-09-21 18:29:00
CVE-2018-19168
2018-11-11 00:29:00
prion
prion
Remote code execution
2020-11-05 15:15:00
Input validation
2018-09-21 18:29:00
Design/Logic Flaw
2018-11-11 00:29:00
cvelist
cvelist
CVE-2020-24849
2020-11-05 14:19:40
CVE-2018-17317
2018-09-21 18:00:00
CVE-2018-19168
2018-11-11 00:00:00
nvd
nvd
CVE-2020-24849
2020-11-05 15:15:33
CVE-2018-17317
2018-09-21 18:29:00
CVE-2018-19168
2018-11-11 00:29:00
osv
osv
CVE-2018-17317
2018-09-21 18:29:00
CVE-2018-19168
2018-11-11 00:29:00

AI Score

7.5

Confidence

Low

EPSS

0.053

Percentile

93.1%

JSON
Related for OSV:CVE-2020-24849
cve3prion3cvelist3nvd3osv2