Vulnerability Details CVE-2024-24301
Command Injection vulnerability discovered in 4ipnet EAP-767 device v3.42.00 within the web interface of the device allows attackers with valid credentials to inject arbitrary shell commands to be executed by the device with root privileges.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.023
EPSS Ranking 83.8%
CVSS Severity
CVSS v3 Score 8.8
Products affected by CVE-2024-24301
-
cpe:2.3:h:4ipnet:eap-767:*
-
cpe:2.3:o:4ipnet:eap-767_firmware:3.42.00