Lucene search
GoogleOSV:CVE-2020-24849HistoryNov 05, 2020 - 3:15 p.m.
CVE-2020-24849
2020-11-0515:15:33
Google
osv.dev
A remote code execution vulnerability is identified in FruityWifi through 2.4. Due to improperly escaped shell metacharacters obtained from the POST request at the page_config_adv.php page, it is possible to perform remote code execution by an authenticated attacker. This is similar to CVE-2018-17317.
| CPE | Name | Operator | Version |
|---|---|---|---|
| fruitywifi | eq | 2.0 | |
| fruitywifi | eq | 2.3 | |
| fruitywifi | eq | 2.1.2 | |
| fruitywifi | eq | 2.1.3 | |
| fruitywifi | eq | 2.2 | |
| fruitywifi | eq | 2.1.1 | |
| fruitywifi | eq | 2.1 | |
| fruitywifi | eq | 2.4 |
Related
cve
cve
cvelist
cvelist
nvd
nvd
prion
prion
Remote code execution
2020-11-05 15:15:00
Input validation
2018-09-21 18:29:00
Design/Logic Flaw
2018-11-11 00:29:00
osv
osv
CVE-2018-17317
2018-09-21 18:29:00
CVE-2018-19168
2018-11-11 00:29:00