CVE-2024-21879

CVSS V2 None CVSS V3 None
Description
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability through an url parameter of an authenticated enpoint in Enphase IQ Gateway (formerly known as Envoy) allows OS Command Injection.This issue affects Envoy: from 4.x to 8.x and < 8.2.4225.
Overview
  • CVE ID
  • CVE-2024-21879
  • Assigner
  • DIVD
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-08-10T17:44:49.728Z
  • Last Modified Date
  • 2024-08-10T17:44:49.728Z
References
History
Created Old Value New Value Data Type Notes
2024-08-11 13:06:47 Added to TrackCVE