CVE Vulnerabilities

CVE-2024-23721

Published: Mar 20, 2024 | Modified: Mar 20, 2024

CVSS 3.x

N/A

Source:

NVD

CVSS 2.x

RedHat/V2

RedHat/V3

Ubuntu

Additional information

NVD	https://nvd.nist.gov/vuln/detail/CVE-2024-23721
CWE	https://cwe.mitre.org/data/definitions/.html

A Directory Traversal issue was discovered in process_post on Draytek Vigor3910 4.3.2.5 devices. When sending a certain POST request, it calls the function and exports information.

References

https://draytek.com
https://gist.github.com/rrrrrrri/8e9cac08eb4d9c01ab258bd5b0f8f7d8

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.