CVE-2024-28138 — An unauthenticated attacker with network access to the affected device's web interface can execute any system command via the "msg_events.php" script as the www-data user. The HTTP GET par

Loading…

CVE-2024-28138 — An unauthenticated attacker with network access to the affected device's web interface can execute any system command via the "msg_events.php" script as the www-data user. The HTTP GET par — CVE Database · The Intelligence Room