Remote Code Execution Vulnerability in NETIS SYSTEMS WF2409E v.3.6.42541

Remote Code Execution Vulnerability in NETIS SYSTEMS WF2409E v.3.6.42541

CVE-2023-38829 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

An issue in NETIS SYSTEMS WF2409E v.3.6.42541 allows a remote attacker to execute arbitrary code via the ping and traceroute functions of the diagnostic tools component in the admin management interface.

Learn more about our Web Application Penetration Testing UK.