7 matches found
CVE-2024-3659
Firmware in KAON AR2140 routers, prior to versions 3.2.50 and 4.2.16, is vulnerable to a shell command injection via sending a crafted request to one of the endpoints. In order to exploit this vulnerability, one has to have access to the administrative portal of the router...
CVE-2024-3659
Firmware in KAON AR2140 routers, prior to versions 3.2.50 and 4.2.16, is vulnerable to a shell command injection via sending a crafted request to one of the endpoints. In order to exploit this vulnerability, one has to have access to the administrative portal of the router...
CVE-2024-3659 Command injection in KAON AR2140 routers
Firmware in KAON AR2140 routers, prior to versions 3.2.50 and 4.2.16, is vulnerable to a shell command injection via sending a crafted request to one of the endpoints. In order to exploit this vulnerability, one has to have access to the administrative portal of the router...
CVE-2024-3659 Command injection in KAON AR2140 routers
Firmware in KAON AR2140 routers, prior to versions 3.2.50 and 4.2.16, is vulnerable to a shell command injection via sending a crafted request to one of the endpoints. In order to exploit this vulnerability, one has to have access to the administrative portal of the router...
CVE-2024-3659
CVE-2024-3659 affects KAON AR2140 routers. Firmware versions prior to 3.2.50 and 4.2.16 are vulnerable to a shell command injection via a crafted request to specific endpoints. Exploitation requires access to the device’s administrative portal. Remediation: upgrade to 3.2.50+ or 4.2.16+ (per vend...
KAON AR2140 安全漏洞
The KAON AR2140 is a wireless router from KAON. A security vulnerability exists in the KAON AR2140 version 4.2.16 and prior versions, which stems from the router firmware being susceptible to shell command injection attacks...
PT-2024-27087 · Kaon · Kaon Ar2140
Name of the Vulnerable Software and Affected Versions: KAON AR2140 routers versions prior to 4.2.16 Description: The issue is related to a shell command injection vulnerability. It can be exploited by sending a crafted request to one of the endpoints, but access to the administrative portal of th...