Vulnerability CVE-2024-43385
Published: 2024-09-10

Description:
A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable PROXY_HTTP_PORT in mGuard devices.

Type:

CWE-78

 (Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') )

 References:
https://cert.vde.com/en/advisories/VDE-2024-039
Copyright 2026, cxsecurity.com

 

Back to Top