← Back to CVE List

CVE-2024-45890

Published: 2024-11-04T15:15Z
Last Modified: 2025-04-10T15:52Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability This vulnerability occurs when the `action` parameter in `cgi-bin/mainfunction.cgi` is set to `download_ovpn.` > MITRE Terms of Use apply – see LICENSE‑MITRE.txt