CVE-2024-4999
CVSS V2 None
CVSS V3 None
Description
A vulnerability in the web-based management interface of multiple Ligowave devices could allow an authenticated remote attacker to execute arbitrary commands with elevated privileges.This issue affects UNITY: through 6.95-2; PRO: through 6.95-1.Rt3883; MIMO: through 6.95-1.Rt2880; APC Propeller: through 2-5.95-4.Rt3352.
Overview
- CVE ID
- CVE-2024-4999
- Assigner
- ONEKEY
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-05-16T12:14:51.671Z
- Last Modified Date
- 2024-06-04T17:53:18.448Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://onekey.com/blog/security-advisory-remote-code-execution-in-ligowave-devices/ | third-party-advisory |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-4999 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-4999 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-23 22:29:31 | Added to TrackCVE |