216.73.216.6

CVE-2024-5035

· Published 27/05/2024 08:15 · Modified 27/05/2024 08:15

Labels: CVE-2024-5035 2024-05-27CVE-2024-5035CWE-77[email protected]

Essential information

Published
27/05/2024 08:15
Modified
27/05/2024 08:15
Author
Creator
CISA KEV
No
CWE

Description

The affected device expose a network service called "rftest" that is vulnerable to unauthenticated command injection on ports TCP/8888, TCP/8889, and TCP/8890. By successfully exploiting this flaw, remote unauthenticated attacker can gain arbitrary command execution on the device with elevated privileges.This issue affects Archer C4500X: through 1_1.1.6.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

References