CVE-2024-4999

{"id": "CVE-2024-4999", "metrics": {}, "published": "2024-05-16T13:15:48.357", "references": [{"url": "https://onekey.com/blog/security-advisory-remote-code-execution-in-ligowave-devices/", "source": "research@onekey.com"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "research@onekey.com", "description": [{"lang": "en", "value": "CWE-77"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability in the web-based management interface of multiple Ligowave devices could allow an authenticated remote\u00a0attacker to execute arbitrary commands with elevated privileges.This issue affects UNITY: through 6.95-2; PRO: through 6.95-1.Rt3883; MIMO: through 6.95-1.Rt2880; APC Propeller: through 2-5.95-4.Rt3352."}], "lastModified": "2024-05-16T15:44:44.683", "sourceIdentifier": "research@onekey.com"}