Home

Description

EnGenius EWS356-FIR 1.1.30 and earlier devices allow a remote attacker to execute arbitrary OS commands via the Controller connectivity parameter.

PUBLISHED Reserved 2024-04-08 | Published 2024-11-27 | Updated 2024-11-29 | Assigner mitre

References

github.com/actuator/cve/tree/main/EnGenius/EWS356-FIT

github.com/actuator/cve/blob/main/Engenius/CVE-2024-31976

cve.org (CVE-2024-31976)

nvd.nist.gov (CVE-2024-31976)

Download JSON