Vulnerability Description
Missing input validation and OS command integration of the input in the utnserver Pro, utnserver ProMAX, INU-100 web-interface allows authenticated command injection.This issue affects utnserver Pro, utnserver ProMAX, INU-100 version 20.1.22 and below.
Related Weaknesses (CWE)
References
- http://seclists.org/fulldisclosure/2024/Jun/4
- https://cyberdanube.com/en/en-multiple-vulnerabilities-in-seh-untserver-pro/inde
- http://seclists.org/fulldisclosure/2024/Jun/4
- https://cyberdanube.com/en/en-multiple-vulnerabilities-in-seh-untserver-pro/inde
FAQ
What is CVE-2024-5421?
CVE-2024-5421 is a documented vulnerability. Missing input validation and OS command integration of the input in the utnserver Pro, utnserver ProMAX, INU-100 web-interface allows authenticated command injection.This issue affects utnserver Pro, ...
How severe is CVE-2024-5421?
CVSS scoring is not yet available for CVE-2024-5421. Check NVD for updates.
Is there a patch for CVE-2024-5421?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.